feat [auth-server]: Device Flow needs configurable acr

JanssenProject / jans

An open source enterprise digital identity platform for CIAM or workforce... Janssen is a distribution of standards-based, developer friendly, components that are engineered to work together in any cloud. #OAuth #OpenID #FIDO

https://docs.jans.io

Apache License 2.0

472 stars 75 forks source link

feat [auth-server]: Device Flow needs configurable acr #4305

Closed imShakil closed 1 year ago

imShakil commented 1 year ago

We need a way to specify the acr (and potentially other params, like agama_flow=...) for device flow. Otherwise when you enable two acr's, it's unpredictable which one may run. Perhaps we can add two Auth Server configuration JSON properties : device_flow_default_acr and device_flow_extra_authn_params ?

yuriyz commented 1 year ago

It was already reported and fixed in 1.0.11 https://github.com/JanssenProject/jans/issues/4278

yuriyz commented 1 year ago

Re-opening and assinging to @devrimyatar to check whether cli sets default acr correctly.

nynymike commented 1 year ago

I repaced the original content of this message with the root cause--there is no way in Auth Server to specify the acr for device flow.