Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Support for alternate authentication schemes

Description

In order to support LDAP and other authentication schemes (e.g., CGI-based authentication), UserContext should support a new AuthenticationScheme interface with the default implementation of BasicAuthenticationScheme (username and password) implemented out of the box. New authentication schemes could be introduced by writing a new implementation of AuthenticationScheme and then wiring it in through the API configuration files. Ideally, substitution (or addition) of the authentication scheme would be protected (e.g., limited to the configuration file setting or not easily done through the API) so that random code could not easily substitute a bogus authentication scheme to subvert proper authentication.

Initial design discussions occurred in this thread. Additional notes on this developers forum.

Talk thread: https://talk.openmrs.org/t/openmrs-and-sso/1757

Attachments

3

Activity

Show:

Nathan Ruhanga September 20, 2019 at 7:30 AM

Closing this because related bug was resolved and fix backported to relevant branches.

Nathan Ruhanga September 19, 2019 at 6:26 PM

, is this ticket ready for closing, seeing the backports have been merged already?

Nathan Ruhanga September 19, 2019 at 11:36 AM

Dimitri R September 17, 2019 at 9:16 AM

Nathan Ruhanga September 16, 2019 at 5:35 PM
Edited

Fixed

Details

Assignee

Reporter

Labels

Complexity

Medium

Designated Committer

Sprint

Fix versions

Priority

Created March 30, 2010 at 3:49 AM
Updated September 20, 2019 at 7:32 AM
Resolved September 20, 2019 at 7:32 AM