Sander,
You can easily add "
acr_values" request parameter by appending it to the STSUU in the "
urn:ibm:SAM:oidc:rp:authorize:req:param" namespace.
A short snippet of the "authorize" operation:
if (operation == "authorize") {
let request_param_acr_values = "acr_basic";
IDMappingExtUtils.traceString("OIDCRP_ADV mapping rule(acr_values parameter):\n " + request_param_acr_values + "\n");
stsuu.addContextAttribute(new Attribute("acr_values", "urn:ibm:SAM:oidc:rp:authorize:req:param", request_param_acr_values));
}Kind regards,
------------------------------
Dries Eestermans
IS4U
------------------------------
Original Message:
Sent: Mon May 06, 2019 10:48 AM
From: Sander Meyfroot
Subject: ISAM: Advanced configuration for OIDC RP partner to modify /authorize request
Hello,
We are currently making an integration with a custom OIDC IDP and ISAM will be used as Relying party.
in our situation we would need to provide a url parameter to the /kickoff url. For example: /kickoff?method=y
We want to use the advanced configuration for an OIDC RP partner to parse the url parameter and add an acr_values parameter to the /authorize. This /authorize url is built by ISAM in response to accessing the kickoff url. Is there any documentation available on how to access the acr_values url parameter in an advanced configuration mapping rule?
Thank you
------------------------------
Sander Meyfroot
------------------------------