<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">Hi Mark,<div class=""><br class=""></div><div class="">Thanks for your reply.</div><div class="">I am still using spring ‘form-login’ element of ‘http' but not sure how do I return back to filter when I don’t have the submit action.</div><div class="">Would it make sense to have a custom AuthenticationEntryPoint and remove the ‘form-login’? </div><div class="">Will it impact MITREid functionality if I remove ‘form-login’?</div><div class=""><br class=""></div><div class="">Thanks,</div><div class="">Amit</div><div class=""><br class=""><div><blockquote type="cite" class=""><div class="">On Mar 30, 2016, at 2:24 AM, Mark Janssen <<a href="mailto:callisto@praseodym.net" class="">callisto@praseodym.net</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div dir="ltr" class="">Hi Amit,<div class=""><br class=""></div><div class="">MITREid Connect uses Spring Security for authentication purposes. You should be able to develop an authentication provider for Spring Security that implements the custom authentication scheme. This authentication provider can then be configured in your MITREid Connect overlay. Aside from this, you will need to implement a UserInfoRepository to provide user info data to OIDC clients.</div><div class=""><br class=""></div><div class="">Regards,</div><div class="">Mark</div></div><br class=""><div class="gmail_quote"><div dir="ltr" class="">On Wed, 30 Mar 2016 at 04:08 Amit Pal <<a href="mailto:apal@noknok.com" class="">apal@noknok.com</a>> wrote:<br class=""></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word" class="">Hi Everyone,<div class=""><br class=""></div><div class="">I am looking to replace the username/password based authentication with a custom authentication scheme (FIDO authentication : <a href="http://ww.fidoalliance.org/" target="_blank" class="">www.fidoalliance.org</a>). </div><div class="">This custom authentication would be performed by another web app hosted in same container but it would NOT use username/password to authenticate user.</div><div class="">It would display QRCode in the browser and user could use its mobile device(already registered) to perform the authentication. Auth response could be fetched by polling the other web app at predefined intervals.</div><div class="">The MITREid server would need to parse the success/failure response and then continue its normal flow.</div><div class=""><br class=""></div><div class="">Any help is appreciated.</div><div class=""><br class=""></div><div class="">Thanks,</div><div class="">Amit</div><div class=""><br class=""></div><div class=""><br class=""></div><div class=""><br class=""></div></div>_______________________________________________<br class="">
mitreid-connect mailing list<br class="">
<a href="mailto:mitreid-connect@mit.edu" target="_blank" class="">mitreid-connect@mit.edu</a><br class="">
<a href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect" rel="noreferrer" target="_blank" class="">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a><br class="">
</blockquote></div>
</div></blockquote></div><br class=""></div></body></html>