Always returns false.
This provider should always be configured with the control flag value of optional so that it does not affect the overall outcome of the authentication process. The method implementation simply adds the client values available in the session as credentials/Principals to the Subject based on the configuration properties.