Hi all,
I am currently working on implementing Identifier first in authentication
flow. This is not an authenticator. This will be like a pre-step which
will get the hint(username) from the user and then continue the
authentication steps. We can extend this to change the authentication flow
based on the username (domain, user-store, tenant).
To support this, we will have 3 type of login page which will be decided by
a parameter passes to the basic authenticator in the authentication script.
1. The default one.
2. The default one without the password.
[image: Screenshot from 2018-06-07 17-32-44.png]
3. Only the password box with signin button.
[image: Screenshot from 2018-06-07 17-35-07.png]
If the username is provided as a hint(or provided in reqest or found in the
cookie), then basicauth will display type 3(or other authenticator decided
using the hint). Else type 2 and then type 3.
First I have planned to implement the login page changes. Because we are
planned to implement getting user input in the authentication flow. So
after that, we can implement getting the hint from the user.
Please share your thoughts about this implementation.
Thanks,
Senthalan.
--
*Senthalan Kanagalingam*
*Software Engineer - WSO2 Inc.*
*Mobile : +94 (0) 77 18 77 466*
<http://wso2.com/signature>
_______________________________________________
Architecture mailing list
[email protected]
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
