[2/2] cxf-fediz git commit: Fixing ForceAuthn

[co...@apache.org]

Fixing ForceAuthn


Project: http://git-wip-us.apache.org/repos/asf/cxf-fediz/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf-fediz/commit/bd0511ca
Tree: http://git-wip-us.apache.org/repos/asf/cxf-fediz/tree/bd0511ca
Diff: http://git-wip-us.apache.org/repos/asf/cxf-fediz/diff/bd0511ca

Branch: refs/heads/master
Commit: bd0511cabcc7fe1163eb83af2df7a7d59ac1184f
Parents: bf460dd
Author: Colm O hEigeartaigh <co...@apache.org>
Authored: Thu Dec 8 11:46:09 2016 +0000
Committer: Colm O hEigeartaigh <co...@apache.org>
Committed: Thu Dec 8 11:46:09 2016 +0000

----------------------------------------------------------------------
 .../idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml     | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf-fediz/blob/bd0511ca/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml
----------------------------------------------------------------------
diff --git a/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml b/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml
index e385a25..c4adbe5 100644
--- a/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml
+++ b/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml
@@ -94,7 +94,8 @@
     
     <action-state id="wfreshParserRemoteAction">
         <evaluate
-            expression="idpTokenExpiredAction.isTokenExpired(flowScope.home_realm, flowRequestContext)" />
+            expression="idpTokenExpiredAction.isTokenExpired(flowScope.home_realm, flowRequestContext)
+                        or authnRequestParser.isForceAuthentication(flowRequestContext)" />
         <transition on="yes" to="redirectToTrustedIDP" />
         <transition on="no" to="validateWReply" >
             <set name="flowScope.idpToken" value="externalContext.sessionMap[flowScope.home_realm]" />