You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The error=mfa_required, followed by challenge_type=redirect with some new context mechanism may be used by OAuth providers to switching to a web auth to show arbitrary prompts (like legal notices, notices of expiring billing information, etc.) In other words, they’ll use error=mfa_required/credential_required to show non-credential non-MFA prompts, contradictory to the error code.
Is there an alternative we can propose (e.g. claims challenge type flow)?
The text was updated successfully, but these errors were encountered:
The error=mfa_required, followed by challenge_type=redirect with some new context mechanism may be used by OAuth providers to switching to a web auth to show arbitrary prompts (like legal notices, notices of expiring billing information, etc.) In other words, they’ll use error=mfa_required/credential_required to show non-credential non-MFA prompts, contradictory to the error code.
Is there an alternative we can propose (e.g. claims challenge type flow)?
The text was updated successfully, but these errors were encountered: