Re: NotOnOrAfter in SAML Tokens with Advice

You can access the incoming "ActAs" token via "providerParameters.getTokenRequirements().getActAs()" in your ConditionsProvider implementation - that's probably the only way to do it. Colm. On Tue, Oct 27, 2015 at 4:27 PM, wrote: > In our SAML profile, a SAML

NotOnOrAfter in SAML Tokens with Advice

In our SAML profile, a SAML token issued with Advice should have a NotOnOrAfter condition that does not come after the Advice token's NotOnOrAfter condition. But apparently, the CXF STS (2.7.14) doesn't consider Advice conditions when issuing a new token? If it doesn't I can add that capability