Also it's good practice if we can put this logic/code in a common place and reuse, if the same functionality is required by other authinticator.
On Wed, Jun 29, 2016 at 1:07 PM, Thulasika Vijayanathan <[email protected]> wrote: > Hi All, > > Currently, TOTP authenticator supports basic authentication as a first > step.Now I'm working on TOTP authenticator improvement to support federated > authenticators(facebook, google, etc..) in the first step. > > TOTP authenticator needs to retrieve the end user related attributes from > the local user store.To retrieve the local user store data, Username must > be decided in the following ways: > > 1. TOTP needs to retrieve some attributes from local user store, the > Therefore federated username must be stored in the local username as well. > > 2. If the local username is not equal to federated username, Federated > username must be associated with the local account in advance in the > Dashboard. So local username is retrieved from an association. > > 3. Local username is contained in a federated user's attribute. > > If you have enabled the "enableTOTP=false" Flow would be successful > without even an association. It is considered that TOTP has not been > enabled for given user. So it will authenticate successfully with federated > authenticator. > > Your comments and suggestions are highly appreciated. > > > Thanks, > Thulasika > > -- > Thulasika > Associate Software Engineer > Mobile:0778014295 > email: [email protected] <[email protected]> > -- Best Regards, Malaka Silva Senior Technical Lead M: +94 777 219 791 Tel : 94 11 214 5345 Fax :94 11 2145300 Skype : malaka.sampath.silva LinkedIn : http://www.linkedin.com/pub/malaka-silva/6/33/77 Blog : http://mrmalakasilva.blogspot.com/ WSO2, Inc. lean . enterprise . middleware http://www.wso2.com/ http://www.wso2.com/about/team/malaka-silva/ <http://wso2.com/about/team/malaka-silva/> https://store.wso2.com/store/ Save a tree -Conserve nature & Save the world for your future. Print this email only if it is absolutely necessary.
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
