Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🌱 Support app-level MFA #240

Merged
merged 1 commit into from
Nov 19, 2018
Merged

🌱 Support app-level MFA #240

merged 1 commit into from
Nov 19, 2018

Conversation

AlainODea
Copy link
Contributor

Problem Statement

Issue #25 states:

We use application level sign on policies to enforce MFA for specific applications, however the cli tool doesn't support this. I saw an closed issue from August due to lack of API support. Has this been added to the API? Is there some other solution to this problem?

Solution

  • Use stored cookies for browser authentication

  • Use browser for subsequent authentications when
    OKTA_BROWSER_AUTH=true

  • Use RFC6265 cookie parsing provided by Apache HTTP Components

  • Provide a CookieHandler that delegates to JFX and saves cookies as
    they are updated by HTTP responses

Resolves #25

@AlainODea
🌱 Support app-level MFA
effd21c 
 - Use stored cookies for browser authentication

 - Use browser for subsequent authentications when
   OKTA_BROWSER_AUTH=true

 - Use RFC6265 cookie parsing provided by Apache HTTP Components

 - Provide a CookieHandler that delegates to JFX and saves cookies as
   they are updated by HTTP responses

Resolves oktadev#25
@AlainODea AlainODea mentioned this pull request Nov 5, 2018
Closed
@AlainODea
Copy link
Contributor Author

@duhaas2015 @philliphayesiam this should fix your app-level MFA issue. If you can review and approve it, I can merge it.

@AlainODea
Copy link
Contributor Author

@duhaas2015 @philliphayesiam you folks seemed interested in a fix for this, can you arrange a code review so it can be merged, please?

@AlainODea AlainODea merged commit a95b8a4 into oktadev:master Nov 19, 2018
@AlainODea AlainODea deleted the ao-SEEDLING-app-level-MFA-support branch January 12, 2019 02:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chris-whittick chris-whittick chris-whittick approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Enhancement request: support for application-level MFA sign on policies
2 participants
@AlainODea @chris-whittick