I was wondering if generating
<RequireAll> sections was something that is currently supported (or planned) in the OOD portal generator.
Right now, the
auth: section takes things like:
auth: - "AuthType openid-connect" - "Require claim group:foo"
and transforms them in the following Apache configuration block:
<Location "/oidc"> AuthType openid-connect Require claim group:foo </Location>
But in some configurations, it may be necessary to check and require multiple claims, and make sure they’re all satisfied, using the
<RequireAll> directive. For instance, to check that users are members of multiple groups, like this:
<Location "/oidc"> <RequireAll> AuthType openid-connect Require claim group:foo Require claim group:bar </RequireAll> </Location>
Is that something that the OOD portal generator can do?