Closed jtgasper3 closed 7 years ago
I dont think the above solution would work with IdP3. I see no classes for a passive authN exception.
Also, one thing that I realized was, how does the client validation set gateway to true?
Looks like we need to follow the guidance at http://shibboleth.1660669.n2.nabble.com/Shibboleth-IdP-3-External-Authn-isPassive-td7610365.html, if it isn't already being done.
What do you mean by "client validation"? The validation doesn't care whether gateway was true or not? If there was an ST in the response, we validate it. Otherwise not user was returned... Or are you thinking of renew=true?; where it does care.
Oh, I was thinking of renew=true. Never mind :)
I think this is resolved. Closing
The response needs to work something like this: