[
https://issues.apache.org/jira/browse/FEDIZ-138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15013521#comment-15013521
]
Jan Bernhardt commented on FEDIZ-138:
-------------------------------------
Hi Sergey,
a user friendly login page is already available within the current Fediz
version. You just need to uncomment the {{security:form-login}} statement in
the {{security-config.xml}}. The login page is located at
{{cxf-fediz/services/idp/src/main/webapp/WEB-INF/views/signinform.jsp}}. Feel
free to improve the look and feel of that page.
I also agree with you that the user friendly login page should be the default
login page. Changing this will require to update some Unit Tests as they
currently expect a 401 Status code in some cases.
I guess it will not be so easy to provide a composite login page because this
requires to change the current login flow. But I also agree with you that it
would be better from a user experience point of view.
Regards
Jan
> Improve IDP Login experience
> ----------------------------
>
> Key: FEDIZ-138
> URL: https://issues.apache.org/jira/browse/FEDIZ-138
> Project: CXF-Fediz
> Issue Type: Improvement
> Components: IDP
> Affects Versions: 1.3.0
> Reporter: Sergey Beryozkin
> Priority: Minor
>
> Proposal:
> The first step is to replace the default name/password Spring Security
> name/password dialog with a more user friendly page asking for the name and
> password with some Welcome IDP banner, the default dialog is of course can be
> replaced in the product - but it would be good to have something better even
> OOB. I'm assuming it would require customizing the authentication/MVC flow.
> The second step: at the moment, if no realm is provided by RP, IDP form is
> displayed, where a user is asked to select a home realm, and then the user is
> challenged with the authentication dialog, thus if a user is expected to
> authenticate into the current IDP then two screens/steps are involved. Thus
> it all should be combined into a single page. Example: a form would have
> name/password fields so that a user can authenticate immediately into the
> current realm and if partner IDPs are available then the form would also have
> buttons like "SignIn with IDP B", "SignIn with IDP C".
> I guess this is also customizable in the production but it would nice to have
> a composite page available OOB. IMHO this would be in line with the best
> login practices (such as those advocated by Google, etc, where a user is
> expected to press a minimum number of buttons during the login process)
>
>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
