<div dir="ltr"><div><div>Hi All,<br></div>I am sending prompt=login parameter with the authorization request when the End-User is already authenticated. According to the spec [1] , in this case the
Authorization Server MUST reauthenticate the End-User
even if the End-User is already authenticated. So the server prompts the login page again and the use has to provide credentials again.<br><br></div>Once we are running the OIDC compliance test cases I'm getting following error. <br><br><pre><code>[multiple-sign-on]
status: ERROR
description: Verifies that multiple authentication was used in the flow
info: Not two separate authentications!</code></pre><br><br>So what is the actual thing that the server suppose to do with prompt=login parameter in authorization request. Does the server need to log out the user if there is an already authenticated session with the prompt=login parameter? Otherwise how can we avoid this multiple authentication error?<br><pre><code><font face="arial,helvetica,sans-serif">Any suggestion is highly appreciated.</font><br><br>[1] <a href="http://openid.net/specs/openid-connect-core-1_0.html">http://openid.net/specs/openid-connect-core-1_0.html</a><br></code></pre><pre><code>Thanks,<br></code></pre><br><div><div><div><div><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><span style="font-size:10pt;font-family:AdiHaus;color:gray" lang="DE"></span><span style="font-size:11pt;font-family:"Calibri","sans-serif";color:rgb(31,73,125)"> </span><span style="font-size:10pt;font-family:AdiHaus;color:gray" lang="DE"></span><span><span><font color="#888888"><p dir="ltr" style="line-height:1.15;margin-top:0pt;margin-bottom:0pt"><span style="color:rgb(102,102,102);font-family:"trebuchet ms",sans-serif">Hasanthi<font color="#888888"> Dissanayake</font></span><br></p><p dir="ltr" style="line-height:1.15;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;vertical-align:baseline"><font face="trebuchet ms, sans-serif" color="#666666">Software Engineer | WSO2</font></span></p><p dir="ltr" style="line-height:1.15;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;vertical-align:baseline"><span style="color:rgb(102,102,102);font-family:"trebuchet ms",sans-serif;line-height:normal">E</span>: <a href="mailto:hasanthi@wso2.com" style="font-family:"trebuchet ms",sans-serif;line-height:normal" target="_blank">hasanthi@wso2.com</a><font face="trebuchet ms, sans-serif" color="#666666"><br></font></span></p><font face="trebuchet ms, sans-serif" color="#666666"><span style="background-color:transparent;vertical-align:baseline">M :0718407133|</span><a href="http://wso2.com/" style="color:rgb(17,85,204);text-decoration:none" target="_blank"><span style="background-color:transparent;vertical-align:baseline"> </span><span style="background-color:transparent;text-decoration:underline;vertical-align:baseline">http://wso2.com</span></a><span style="background-color:transparent;vertical-align:baseline"> <br></span></font></font></span></span></div></div></div></div></div></div></div></div></div>
</div></div></div></div></div>