+1 Hasintha.. Have you done a poc on this? Thanks,
On Thu, Feb 1, 2018 at 11:50 AM, Hasintha Indrajee <hasin...@wso2.com> wrote: > At the present we have post authentication criteria which are evaluated > upon authentication in an authentication flow. Examples are "Handling > missing mandatory claims" and "Authorization handling". According to the > current implementation these logics are bind towards our framework > implementation so that if we need to add a new post authentication > evaluation criteria, we do not have an alternative other than changing > framework source. > > With emerging requirements we may need to add more post authentication > criteria in the future. For an example, we may need to intercept post > authentication and request for consent on requested claims. Likewise there > may be other requirements to intercept post authentication flow. > > Foreseeing these requirements we are planing to generalize post > authentication handling so that post authentication handling will no longer > be a static part of framework. We should be able to add post authentication > handlers as OSGI services. Upon this change, missing mandatory claim > handler and authorization handler will be two OSGI post authentication > handlers. > > -- > Hasintha Indrajee > WSO2, Inc. > Mobile:+94 771892453 <+94%2077%20189%202453> > > -- Regards, *Darshana Gunawardana*Technical Lead WSO2 Inc.; http://wso2.com *E-mail: darsh...@wso2.com <darsh...@wso2.com>* *Mobile: +94718566859*Lean . Enterprise . Middleware
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev