-
assigned issue to
- changed status to open
Add require_auth_time to registration.
Issue #532
resolved
Allow the id_token claim auth_time to be requested via configuration rather than requiring a request_object.
require_auth_time OPTIONAL. If the value is true, then the auth_time Claim in the id_token is REQUIRED. The returned Claim Value is the number of seconds from 1970-01-01T0:0:0Z as measured in UTC until the date/time that the End-User authentication occurred. (The auth_time Claim semantically corresponds to the OpenID 2.0 PAPE auth_time response parameter.) The auth_time claim request in the request object overrides this setting.
Comments (2)
-
-
reporter - changed status to resolved
Fixes
#532Add require_auth_time registration paramater - Log in to comment