Anonymous_User Absent Member.
Absent Member.
179 views

Auth Levels, SocialAuth & Secure Name/Password -Form


Hi Community,

I have the following scenario:

- Page A - One Protected resorce with SocialAuth Contract (Level 0)
- Page B - One Protected resorce with Secure Name/Password - Form
Contract (Level 1)

SocialAuth Contract is satisfiable by a contract of equal or higher
level, but Form not.
When I access to A with SocialAuth or Form Auth, AM show me the page
with no problem, and its works well. But If I Access to A with
SocialAuth and then I Want to go to Page B, AM show me the FORM Auth
Because have a level 0, and I need Level 1 auth.
My question is: There is a way to show a form who only need the password
of the user (Because He has authenticated with Level 0 and has a "match"
with my UserStore).
I know that if i try to authenticate with another account in the form
(after have a SocialAuth Authentication) , AM close the sessions to
avoid the "CrossAuth" but i want to know if there is a away more "user
friendly" like only put my password in the form if i have a session of
lower lever.

Cheers,
esandoval


--
esandoval_identicum
------------------------------------------------------------------------
esandoval_identicum's Profile: https://forums.netiq.com/member.php?userid=1529
View this thread: https://forums.netiq.com/showthread.php?t=52644

0 Likes
2 Replies
Anonymous_User Absent Member.
Absent Member.

Re: Auth Levels, SocialAuth & Secure Name/Password -Form


esandoval_identicum;253313 Wrote:
> Hi Community,
>
> I have the following scenario:
> > > >

- Page A - One Protected resorce with SocialAuth Contract (Level 0)
- Page B - One Protected resorce with Secure Name/Password - Form
> Contract (Level 1)
> > >

> SocialAuth Contract is satisfiable by a contract of equal or higher
> level, but Form not.
> When I access to A with SocialAuth or Form Auth, AM show me the page
> with no problem, and its works well. But If I Access to A with
> SocialAuth and then I Want to go to Page B, AM show me the FORM Auth
> Because have a level 0, and I need Level 1 auth.
> My question is: There is a way to show a form who only need the
> password of the user (Because He has authenticated with Level 0 and
> has a "match" with my UserStore).
> I know that if i try to authenticate with another account in the form
> (after have a SocialAuth Authentication) , AM close the sessions to
> avoid the "CrossAuth" but i want to know if there is a away more "user
> friendly" like only put my password in the form if i have a session of
> lower lever.
>
> Cheers,
> esandoval


Sounds like you want to formfill the username in the IDP login.

You'd have to have the IDP behind the AG for that to work.


--
EricVeysey
------------------------------------------------------------------------
EricVeysey's Profile: https://forums.netiq.com/member.php?userid=493
View this thread: https://forums.netiq.com/showthread.php?t=52644

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Auth Levels, SocialAuth & Secure Name/Password -Form

On 1/22/2015 8:44 AM, esandoval identicum wrote:
> My question is: There is a way to show a form who only need the password
> of the user (Because He has authenticated with Level 0 and has a "match"
> with my UserStore).


Another option besides formfilling it would be to write your own class that does this. The developer docs are really good
for this. If you take the example it should be pretty easy to modify it to get the existing principal if it is present
instead of displaying a text box.


--
-----------------------------------------------------------------------
Will Schneider
Knowledge Partner http://forums.netiq.com

If you find this post helpful, please click on the star below.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.