Hello Guacamole Community, We are currently working on a web application where users log in and receive a JWT token that contains information about the authenticated user. In our application, we want to embed Guacamole either as an iframe or as a button that opens a new browser tab with Guacamole.
What we need is a custom authentication module that can handle this workflow. Specifically: 1. The custom authentication module should accept our JWT token as a URL parameter (URL-encoded base64) passed from the iframe or the button. 2. It should validate the JWT token by checking its signature to confirm its validity. 3. There should be a configuration file that maps the username in the JWT token to a Guacamole user (note: the usernames in our web application and the Guacamole usernames are not the same). 4. If the mapping exists, the module should log the user into Guacamole automatically. The goal: If a user is already logged into our web application, they should not need to log in again and should directly access their Guacamole session. Could anyone in the community help us develop such a module? If so, what would the cost be? Alternatively, are there better ways to achieve this goal? We appreciate your feedback and look forward to hearing from you. Marco Röösli, CTO/Head Development Allocare AG | Kantonsstrasse 3 | CH-6246 Altishofen | www.allocare.com<http://www.allocare.com/> P +41 62 748 65 65 | D +41 62 748 65 24 | M +41 79 874 62 60 | marco.roeoe...@allocare.com<mailto:marco.roeoe...@allocare.com> Information Classification: Limited Access The information contained in this email and any attachments have been classified as limited access and/or privileged Allocare AG information/communication and is intended solely for the use of the named addressee(s). If you are not an intended recipient or a person responsible for delivery to an intended recipient, please notify the author and destroy this email. Any unauthorized use, copying, disclosure, retention or distribution of the material in this email is strictly forbidden. E-mails are susceptible to alteration and their integrity cannot be guaranteed. Allocare AG shall not be liable for this e-mail if modified or falsified. Thank you for your cooperation.
