Hi,
Thanks Tharindu and Farasath for the clarifications.
On Sat, Jan 20, 2018 at 9:12 AM, Farasath Ahamed wrote:
>
>
> On Friday, January 19, 2018, Sathya Bandara wrote:
>
>> Hi all,
>>
>> When there is an already authenticated session for an application user
>> with Identity Server, there is
On Friday, January 19, 2018, Sathya Bandara wrote:
> Hi all,
>
> When there is an already authenticated session for an application user
> with Identity Server, there is no necessity to prompt for another login to
> the IS if the user logs into the application from another tab in the same
> browse
Hi Sathya,
>From security perspective, this requirement is totally valid. Assume a
scenario where we currently have single step authentication but at a point
we enforce two factor authentication. At that time, adding the step 2 to
the SP won't get affected to the users already have active sessions
Hi all,
When there is an already authenticated session for an application user with
Identity Server, there is no necessity to prompt for another login to the
IS if the user logs into the application from another tab in the same
browser.
However we can change the service providers authentication sc
