> On 5 Nov 2019, at 17:53, Narinder Chandi via 4D_Tech <[email protected]> > wrote: > > Has anyone done work on implementing either SAML or OpenID Connect protocol > in native 4D code for single sign-on in 4D Web Applications? I know about > 4D's work on single sign on using Active Directory and/or LDAP etc, but this > question is specifically for SAML or OpenID Connect.
Hi Keith, Yes, I have experience with Open ID Connect. A customer of mine got the requirement to handle user authentication through an OpenID Connect provider. I think the customer was using Microsoft’s Azure Active Directory. So basically I had to replace the login screen of their desktop application with the login screen of the OpenID provider. If you are familiar with OAuth2, then it works quite the same. In a web area we show the provider’s login screen. Upon successful login, the 4D app receives a JSON Web Token (JWT), that contains the user’s information with a digital signature on it. This JWT then needed to be verified against X509 digital certificates in the JWKS format. That was a bit more of a technical challenge, but I developed this functionality for NTK Plugin. I do not remember the exact details because it is almost 2 years ago that I have developed this. But let me know if you have any questions or need help. Kind regards, - Rob Laveaux -------------------------------------------------------- Pluggers Software Scholekstersingel 48 2496 MP Den Haag The Netherlands Email: [email protected] Website: http://www.pluggers.nl -------------------------------------------------------- ********************************************************************** 4D Internet Users Group (4D iNUG) Archive: http://lists.4d.com/archives.html Options: https://lists.4d.com/mailman/options/4d_tech Unsub: mailto:[email protected] **********************************************************************
