Menu
▾
▴
Re: [Unity-idm-discuss] Fail Authentication in translation profile
|
From: Krzysztof B. <kb...@un...> - 2020-04-24 19:24:47
|
Hi Sander, W dniu 21.04.2020 o 08:29, Sander Apweiler pisze: > Hi Krzysztof, > > I found the action "failAuthentication" in output translation profile > which looks very promising to perform some light wight authorisation. > The action itself works, but the error message is not displayed and I'm > redirected to the SP. Is this flow wanted? I would expect that the > entered error message is displayed to the user and the login flow is > interrupted. Yes, it works as implemented: the authentication is failed and the failure is returned to the service provider that requested authentication (with configured error message given as failure reason, in protocol specific way). Theoretically we could log user out, display error message and... what then? Return to authN screen again? User probably has no way out (unless has another identity, what is a rather rare case I guess). Cheers, Krzysztof |
