How can I create my own custom authentication mechanism for Activiti.I have tried using LDAP provided in the activiti documentation here - https://docs.alfresco.com/activiti/docs/dev-guide/1.4.0/#_custom_identity_synchronization. but it's not what I want. I want a authentication mechanism of my own to co-op with Activiti.
I am using Activiti Enterprise version.
Thanks in advance.
You can try override Activiti's security config. follow this https://docs.alfresco.com/activiti/docs/dev-guide/1.4.0/#_security_configuration_overrides
Related
Anyone implemented SAML SSO authentication using Apache camel? I need sample authentication code for same in Apache camel.I checked in that camel site but didn't find any useful information
Read the section on Spring Security integration, you need to implement the AuthorizationPolicy using camel-spring-security module. The Spring Security SAML project on GitHub have a sample application.
We are working with MobileFirst 7.0 version. We want to achieve authentication using adapter based authetication process. Earlier we used HTTP Adapter and it worked. But we changed it to Java Adapter and want to acheive authentcation with Java Adapter Based authetication.
My questions are :
Is it possible?
If yes, how can we move forward?
If not, what is the alternative of doing authentication usig Java Adapter?
There is some documentation covering your question.
Here are links to get you started:
Authentication concepts in MFP 7.0: https://developer.ibm.com/mobilefirstplatform/documentation/getting-started-7-0/authentication-security/authentication-concepts/
Adapters overview: https://developer.ibm.com/mobilefirstplatform/documentation/getting-started-7-0/server-side-development/adapter-framework-overview/
Java adapters: https://developer.ibm.com/mobilefirstplatform/documentation/getting-started-7-0/server-side-development/java-adapter/
Adapter-based authentication: https://developer.ibm.com/mobilefirstplatform/documentation/getting-started-7-0/authentication-security/adapter-based-authentication/
You need to use a JavaScript adapter.
Read the documentation.
Use OAuth.
I found this blog entry, and in particular the second video answered many questions.
OAuth Blog
In all cases I have ever seen we set up a Worklight security Realm and use adapter-based authentication to authenticate to that Realm. Our OAuth-protected resources then reference that realm.
In principle we could define realms that do not depend upon a JavaScript adapter for authentication, the MFP Security model is open to extension. In practice this is probably more work than you want to do. I find that the JavaScript model is itself quite extensible, as it can call down to Java code when something complex is needed.
I am planning to use WSO2 Identity Server as an Oauth2 provider. However the authentication is to be provided by my enterprise service which uses SOAP Protocol.
Basically I have to send a username/password combination to my service and it provides an authentication response. I understand that I need to implement a custom authenticator but I am not sure how to plug into ws02 IS, having read some of the custom auth docs. The questions are the following
Should I implement a LocalApplicationAuthenticator or FederatedApplicationHandler ?
I understand there is a method called canHandle() in AuthenticationHandler but not sure what to write in my scenario.
What are the various configurations that I need to apply to make custom authentication handler work?
Can I build my custom authentication handler as a normal jar file since I am not comfortable building OSGI bundles?
Thanks
I'd suggest to implement a custom user store, see:
http://pushpalankajaya.blogspot.be/2013/09/how-to-write-custom-user-store-manager.html
there is a method 'doAuthenticate' you may implement as you see fit.
Have fun
g.
I need to install an alfresco using a custom authentication service based on xml messages.
I think the best way for this is to use a custom subsystem. But I don't find anny docs on how to dev an alfresco subsystem.
Did someone have something that can help me ?
Alfresco uses the Spring Security Framework. You might be better off developing a custom authenticator that plugs in to that framework versus writing an entirely new sub-system.
I want to implement SAML Token based authentication and authorization for a Web services in Java to be deployed on WEBLOGIC 11g Server?
I need a suggestion on some good online resources or help which would help me implement it.
Thanks.
OpenSAML would be a good place to start. The Java version is full featured, and it has extensive documentation that guides you through its usage: https://spaces.internet2.edu/display/OpenSAML/OSTwoUserManual