simplesamlphp-module-oidc There is no way to define authentication processing filter per particular Relying Party

There is no way to define authentication processing filter per particular Relying Party

Open cicnavi opened this issue 1 month ago • 1 comments

We should try and mimic the possibility to enable particular authentication processing filter for particular Relying Party, similar in how this is possible for SAML Service Providers described in https://simplesamlphp.org/docs/stable/simplesamlphp-authproc.html#filters-in-metadata

Oct 08 '25 07:10 cicnavi

Hint from @tvdijen: check filter precondition as per https://simplesamlphp.org/docs/stable/simplesamlphp-authproc.html#preconditional-filters

Sample:

'%precondition' => 'return strcmp($state["core:SP"], "my-sp-entity-id-that-should-run-this-filter") === 0;',

Oct 08 '25 11:10 cicnavi

simplesamlphp-module-oidc simplesamlphp-module-oidc copied to clipboard

There is no way to define authentication processing filter per particular Relying Party

simplesamlphp-module-oidc
simplesamlphp-module-oidc copied to clipboard