cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Colm O hEigeartaigh (JIRA)" <>
Subject [jira] [Closed] (FEDIZ-30) Relying Party can enforce re-authentication using wfresh parameter
Date Thu, 10 Jan 2013 14:36:14 GMT


Colm O hEigeartaigh closed FEDIZ-30.

> Relying Party can enforce re-authentication using wfresh parameter
> ------------------------------------------------------------------
>                 Key: FEDIZ-30
>                 URL:
>             Project: CXF-Fediz
>          Issue Type: New Feature
>          Components: IDP, Plugin
>    Affects Versions: 1.0.1
>            Reporter: Oliver Wulff
>            Assignee: Oliver Wulff
>             Fix For: 1.0.2
> An application can enforce a re-authentication by setting the wfresh parameter to 0 in
the redirect to the IDP.
> snippet from the spec (
> wfresh
> This OPTIONAL parameter indicates the freshness requirements.  If specified, this indicates
the desired maximum age of authentication specified in minutes.  An IP/STS SHOULD NOT issue
a token with a longer lifetime.  If specified as “0” it indicates a request for the IP/STS
to re-prompt the user for authentication before issuing the token.    Note that this serves
roughly the same purpose as the Freshness element in the WS-Trust SOAP RST messages.
> email thread:

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message