Skip to content
GitLab
Projects Groups Topics Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
  • I idpv3-mfa
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributor statistics
    • Graph
    • Compare revisions
  • Issues 21
    • Issues 21
    • List
    • Boards
    • Service Desk
    • Milestones
  • Merge requests 0
    • Merge requests 0
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages and registries
    • Packages and registries
    • Container Registry
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Repository
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • Etienne Dysli Metref
  • idpv3-mfa
  • Issues
  • #18
Closed
Open
Issue created Apr 13, 2016 by Etienne Dysli Metref@etienne.dysli-metref🦉Owner

-RM-3650-MR-MFA only to validate sensitive actions

As a SP-protected web application operator,
I want to be able to use 2FA only to validate sensitive user actions,
so that sensitive actions are strongly protected and users are not required to use 2FA all the time.

→ handled by the application which must request stronger authentication to Shibboleth when it needs it

(from redmine: issue id 3650, created on 2016-04-13)

Assignee
Assign to
Time tracking