Re: 4D Authentication Strategy...

On Jan 9, 2019, at 11:08 AM, Tom Benedict wrote: > You have clearly a lot of experience with this, and I have none, so I > probably shouldn’t have joined the thread. However, I have a long standing > interest in SSO and Authentication in general. > > What I’ve found, after working many years

Re: 4D Authentication Strategy...

Hi Tim, You have clearly a lot of experience with this, and I have none, so I probably shouldn’t have joined the thread. However, I have a long standing interest in SSO and Authentication in general. What I’ve found, after working many years for a large enterprise organization which has very

Re: 4D Authentication Strategy...

On Jan 8, 2019, at 6:38 AM, Robert ListMail wrote: > Right, I understand the SSO as originally explained—that was very helpful. > Yet, for testing purposes at my location (without the authentication server) > or at the client site when you might need to login as a specific user, how > might yo

Re: 4D Authentication Strategy...

On Jan 8, 2019, at 10:36 AM, Tom Benedict wrote: > Here’s a link to instructions on how to set up a test Active Directory > instance which might work for your testing. I haven’t tried it yet. > https://auth0.com/docs/connector/test-dc It might help. > > As far as switching between 4D Authentic

Re: 4D Authentication Strategy...

Hi Robert, Here’s a link to instructions on how to set up a test Active Directory instance which might work for your testing. I haven’t tried it yet. https://auth0.com/docs/connector/test-dc It might help. As far as switching between 4D Authentication

Re: 4D Authentication Strategy...

Hi Tim, Right, I understand the SSO as originally explained—that was very helpful. Yet, for testing purposes at my location (without the authentication server) or at the client site when you might need to login as a specific user, how might you switch to/from SSO or not? I suppose there is an a

Re: 4D Authentication Strategy...

On Jan 6, 2019, at 12:52 AM, Tom Benedict wrote: > It doesn’t look like your scheme gets access privileges from Windows Active > Directory, instead you are getting them from your Users table. Is that > correct? No. I am getting access privileges by using the "Current client authentication” 4D

Re: 4D Authentication Strategy...

Tim, It doesn’t look like your scheme gets access privileges from Windows Active Directory, instead you are getting them from your Users table. Is that correct? Do you also use 4D Users & Groups to define Groups to manage access to application features? So you don’t use the LDAP commands to get

Re: 4D Authentication Strategy...

On Jan 5, 2019, at 2:00 PM, Robert wrote: > Tim, I just toggled on the checkbox on the server that activates this feature > but I’ve not implemented the code just yet…. So, how do you specify that you > are logging in with the local 4D password instead of SSO? Modifier keys? > Hidden Menu? Als

Re: 4D Authentication Strategy...

Right, I’ll look at that video again. I recall Tim saying that there was some confusion and unnecessary coding on the server side and that his successful and simple code was client side only. Anyway that’s my recollection. Thanks, Robert Sent from my iPhone > On Jan 4, 2019, at 8:33 PM, Keis

Re: 4D Authentication Strategy...

I would urge you to take a look at the video, https://blog.4d.com/single-sign-on-sso/ it show the code on the client side and the server side that manages authentication. > 2019/01/05 6:36、Robert ListMail via 4D_Tech <4d_tech@lists.4d.com>のメール: > > Tim, I just toggled on the checkbox on the ser

Re: 4D Authentication Strategy...

Tim, I just toggled on the checkbox on the server that activates this feature but I’ve not implemented the code just yet…. So, how do you specify that you are logging in with the local 4D password instead of SSO? Modifier keys? Hidden Menu? Also, I’m not sure when the SSO login is in effect. On

Re: 4D Authentication Strategy...

Oops! Sorry about that—I had no idea!!! Many Thanks Helge. I see it’s almost 7 in the evening your time—god kveld. Robert > On Nov 15, 2018, at 2:36 AM, 4dialog via 4D_Tech <4d_tech@lists.4d.com> wrote: > > By the way, Hilsen = Greeting in norwegian :) *

Re: 4D Authentication Strategy...

I use 4d auth but store aditional data about the user in tables. The user list is exported only on server, only server admin can access it. But you can store it in the db as well. The 4d user list can be changed by the 4d admin user, so export from stucture is done every night in the backup process

Re: 4D Authentication Strategy...

Hi Hilsen, thanks for your input. So, if you are storing users in user tables, couldn’t that be used to restore a new structure? When you say you are storing lists outside of the DB you lose me. With your strategy, is the structure or the data file the authority? Are you using your own custom

Re: 4D Authentication Strategy...

Thanks Jim, for the database I’m working on I might be able to get by with a couple of checkboxes that represent groups and not really have a groups table. I’m planning to have all of the database users in a users table and to authenticate against that and to also verify that there is a matching

Re: 4D Authentication Strategy...

We roll our own mostly. Using a list of available "action". Each user then either has or has not permission for the "action". To trap an action we use a function that passes the user's ID as well as the password that was logged and thirdly the action's ID. The actions also have a Master Action so i

Re: 4D Authentication Strategy...

Tim, I just toggled on the checkbox on the server that activates this feature but I’ve not implemented the code just yet…. So, how do you specify that you are logging in with the local 4D password instead of SSO? Modifier keys? Hidden Menu? Also, I’m not sure when the SSO login is in effect. On

Re: 4D Authentication Strategy...

Supercool Tim! BTW: did you have a way of testing this in your office? Right now I’m thinking that when I’m connected to the client VPN I’d have access to that Windows server for authentication. Thanks, Robert > On Nov 9, 2018, at 9:08 AM, Tim Nevels via 4D_Tech <4d_tech@lists.4d.com> > wro

Re: 4D Authentication Strategy...

On Nov 9, 2018, at 7:34 AM, Robert ListMail wrote: > I’ve inherited many 4D databases over the years and some have a custom > password system and some use the built in 4D system or a hybrid approach. I > know that 4D also allows authentication via Active Directory (single sign on) > but I’ve no

Re: 4D Authentication Strategy...

I always use both, 4d user and user tables to add info about the user. 4D user has a uniq id, so its easy to add records about any user. When updating versions on the server, i just sends the 4D users to a list that can be stored outside or in the dbase and replace them after startup of server. Us