Support for OpenID Connect Session Management session_state parameter #14812
Labels
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
type: enhancement
A general enhancement
It would be great if the retrieval of the
session_state
request paramter used in OpenID Connect Session Management could be added toOidcAuthorizationCodeAuthenticationProvider.authenticate()
method so that the value is added to theAbstractAuthenticationToken.details
.As of today I didn't find any convenient way to retrieve this parameter, except adding a custom
AuthenticationSuccessHandler
that retrieve this parameter to save it in session during the authentication phase.The text was updated successfully, but these errors were encountered: