On Fri, 31 May 2019 at 12:37, Rainer Hoerbe <rainer at hoerbe.at> wrote:
I summarized the handling SATOSA_STATE as discussed in Tuesday’s meeting in the attached
diagrams. I have two questions:
a) Is this picture correct?
Looks right to me. btw, I think those diagrams are really helpful,
thanks for making them ;)
b) Is there any purpose in loading the context from SATOSA_STATE when an AuthnRequest is
received?
In general, no; it is there as part of the generic process (it does
not specialize for the authn-request flow).
But, one can use this to make some special things happen, ie use the
cookie for feature flags.
--
Ivan c00kiemon5ter Kanakarakis >:3