Extend what authentication method is set #371
Description
Is your feature request related to a problem? Please describe.
When issuing claims: At the moment, we default to "BankID" for identity provider (idp), and "bankid" for authentication method (amr). While this is technically true - we should be able to be more precise on the AMR part. The IDP I would consider to be correct but for the amr we know more details.
What area is it related to
AspNetCore, Claims issuing.
Describe the solution you'd like
Keep "bankid" as one of the amr:s, but as it supports an array, we should consider adding any of the suggested (if there is a match) from this list:
https://datatracker.ietf.org/doc/html/rfc8176#section-2
We can also add our custom.
We can indicate things like:
- Was faceid/touchid used on the phone or was it pin?
- Was it a smartcard used?
- Was it the same device, or other device?
Additional context
Only adding to the list of amr:s is technically not a breaking change, as it is an array, but might break implementations checking for the exact string.