Hi All, Currently, TOTP authenticator supports basic authentication as a first step.Now I'm working on TOTP authenticator improvement to support federated authenticators(facebook, google, etc..) in the first step.
TOTP authenticator needs to retrieve the end user related attributes from the local user store.To retrieve the local user store data, Username must be decided in the following ways: 1. TOTP needs to retrieve some attributes from local user store, the Therefore federated username must be stored in the local username as well. 2. If the local username is not equal to federated username, Federated username must be associated with the local account in advance in the Dashboard. So local username is retrieved from an association. 3. Local username is contained in a federated user's attribute. If you have enabled the "enableTOTP=false" Flow would be successful without even an association. It is considered that TOTP has not been enabled for given user. So it will authenticate successfully with federated authenticator. Your comments and suggestions are highly appreciated. Thanks, Thulasika -- Thulasika Associate Software Engineer Mobile:0778014295 email: [email protected] <[email protected]>
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
