Is this the correct contextIdentifier?

[mefarazath]

Noticed we are using request.getRequestedSessionId() as the context identifier in [1]? Is this the expected one? We usually use sessionDataKey as in [2] as the context identifier or in the case of OAuth we use the 'state' parameter.

[1]

identity-outbound-auth-totp/component/authenticator/src/main/java/org/wso2/carbon/identity/application/authenticator/totp/TOTPAuthenticator.java

Lines 329 to 331 in 7dfdd77

	public String getContextIdentifier(HttpServletRequest request) {
	return request.getRequestedSessionId();
	}

[2] https://github.com/wso2-extensions/identity-outbound-auth-passive-sts/blob/master/components/org.wso2.carbon.identity.application.authenticator.passive.sts/src/main/java/org/wso2/carbon/identity/application/authenticator/passive/sts/PassiveSTSAuthenticator.java#L130-L149