<div dir="ltr">Hi Amit,<div><br></div><div>I think you'll be best off developing your Spring Security authentication provider separately and then integrating it into MITREid Connect once it's stable. There are <a href="http://projects.spring.io/spring-security/">many resources</a> that can help you get started with development for Spring Security.</div><div><span style="line-height:1.5"><br></span></div><div><span style="line-height:1.5">As for MITREid Connect, it shouldn't need the form-login if everything else is configured correctly.</span></div><div><span style="line-height:1.5"><br></span></div><div><span style="line-height:1.5">Regards,</span></div><div><span style="line-height:1.5">Mark</span></div></div><br><div class="gmail_quote"><div dir="ltr">On Wed, 30 Mar 2016 at 19:52 Amit Pal <<a href="mailto:apal@noknok.com">apal@noknok.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word">Hi Mark,<div><br></div><div>Thanks for your reply.</div><div>I am still using spring ‘form-login’ element of ‘http' but not sure how do I return back to filter when I don’t have the submit action.</div><div>Would it make sense to have a custom AuthenticationEntryPoint and remove the ‘form-login’? </div><div>Will it impact MITREid functionality if I remove ‘form-login’?</div><div><br></div><div>Thanks,</div><div>Amit</div></div><div style="word-wrap:break-word"><div><br><div><blockquote type="cite"><div>On Mar 30, 2016, at 2:24 AM, Mark Janssen <<a href="mailto:callisto@praseodym.net" target="_blank">callisto@praseodym.net</a>> wrote:</div><br><div><div dir="ltr">Hi Amit,<div><br></div><div>MITREid Connect uses Spring Security for authentication purposes. You should be able to develop an authentication provider for Spring Security that implements the custom authentication scheme. This authentication provider can then be configured in your MITREid Connect overlay. Aside from this, you will need to implement a UserInfoRepository to provide user info data to OIDC clients.</div><div><br></div><div>Regards,</div><div>Mark</div></div><br><div class="gmail_quote"><div dir="ltr">On Wed, 30 Mar 2016 at 04:08 Amit Pal <<a href="mailto:apal@noknok.com" target="_blank">apal@noknok.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word">Hi Everyone,<div><br></div><div>I am looking to replace the username/password based authentication with a custom authentication scheme (FIDO authentication : <a href="http://ww.fidoalliance.org/" target="_blank">www.fidoalliance.org</a>). </div><div>This custom authentication would be performed by another web app hosted in same container but it would NOT use username/password to authenticate user.</div><div>It would display QRCode in the browser and user could use its mobile device(already registered) to perform the authentication. Auth response could be fetched by polling the other web app at predefined intervals.</div><div>The MITREid server would need to parse the success/failure response and then continue its normal flow.</div><div><br></div><div>Any help is appreciated.</div><div><br></div><div>Thanks,</div><div>Amit</div><div><br></div><div><br></div><div><br></div></div>_______________________________________________<br>
mitreid-connect mailing list<br>
<a href="mailto:mitreid-connect@mit.edu" target="_blank">mitreid-connect@mit.edu</a><br>
<a href="http://mailman.mit.edu/mailman/listinfo/mitreid-connect" rel="noreferrer" target="_blank">http://mailman.mit.edu/mailman/listinfo/mitreid-connect</a><br>
</blockquote></div>
</div></blockquote></div><br></div></div></blockquote></div>