At the present we have post authentication criteria which are evaluated upon authentication in an authentication flow. Examples are "Handling missing mandatory claims" and "Authorization handling". According to the current implementation these logics are bind towards our framework implementation so that if we need to add a new post authentication evaluation criteria, we do not have an alternative other than changing framework source.
With emerging requirements we may need to add more post authentication criteria in the future. For an example, we may need to intercept post authentication and request for consent on requested claims. Likewise there may be other requirements to intercept post authentication flow. Foreseeing these requirements we are planing to generalize post authentication handling so that post authentication handling will no longer be a static part of framework. We should be able to add post authentication handlers as OSGI services. Upon this change, missing mandatory claim handler and authorization handler will be two OSGI post authentication handlers. -- Hasintha Indrajee WSO2, Inc. Mobile:+94 771892453
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
