Re: [Unity-idm-discuss] custom servlet endpoint authentication

[Krzysztof B. <go...@ic...>]

Hi,

W dniu 22.01.2015 o 16:27, Terefang Verigorn pisze:
>     Yes, this is quite a lot of work, and rather difficult - you have to
>     understand in details what happens, what is the order of invocation etc.
>
>
> ok, all that works now :-)

wow, that was quick. Congrats!

> public Collection<String> authenticateUser(String userName, String
> password);
> public Collection<String> authenticateUser(String userName, String
> password, String context);
[CUT]
> but i have no idea how i can implement "authenticateUser" -- surely i
> cannot use the bindauthn
> of the endpoint since they are only for the webservice authn/z.
>
> how would i resolve an authenticator-name configured in the endpoints
> private config ?
>
> how would i resolve any of the preconfigured authenticators
> (pwdWeb,ldapWeb,...) ?
> from spring appcontext?

First, can you please explain what the methods are supposed to return?
If you want to retrieve the authenticators configured for your endpoint 
you can get them with getAuthenticators() method inherited from 
AbstractEndpoint base class. Returns list of authenticator sets with 
mirroring what you have configured in endpoint's config in 
unityServer.conf. From the endpoint's description you can retrieve the 
bare names of authenticators.

However note that you will have to make some tricks, as you don't need 
an authenticator (binding specific) but only its one part: the 
credential verificator, as you want to simply verify a credential that 
you have at hand. You can try to expose it from your binding specific 
authenticator (so your retrieval).

Cheers,
Krzysztof