Hi Hasintha, Does this mean that you will be introducing another OSGi service interface for post authentication handlers. What about using the already available eventing service [1].
[1] https://github.com/wso2/carbon-identity-framework/blob/master/components/identity-event/org.wso2.carbon.identity.event/src/main/java/org/wso2/carbon/identity/event/services/IdentityEventService.java Thanks, Malithi. On Thu, Feb 1, 2018 at 6:20 AM, Hasintha Indrajee <[email protected]> wrote: > At the present we have post authentication criteria which are evaluated > upon authentication in an authentication flow. Examples are "Handling > missing mandatory claims" and "Authorization handling". According to the > current implementation these logics are bind towards our framework > implementation so that if we need to add a new post authentication > evaluation criteria, we do not have an alternative other than changing > framework source. > > With emerging requirements we may need to add more post authentication > criteria in the future. For an example, we may need to intercept post > authentication and request for consent on requested claims. Likewise there > may be other requirements to intercept post authentication flow. > > Foreseeing these requirements we are planing to generalize post > authentication handling so that post authentication handling will no longer > be a static part of framework. We should be able to add post authentication > handlers as OSGI services. Upon this change, missing mandatory claim > handler and authorization handler will be two OSGI post authentication > handlers. > > -- > Hasintha Indrajee > WSO2, Inc. > Mobile:+94 771892453 <+94%2077%20189%202453> > > -- *Malithi Edirisinghe* Associate Technical Lead WSO2 Inc. Mobile : +94 (0) 718176807 [email protected]
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
