Authentication provider dependecies

m.gechev · November 28, 2024, 3:22pm

Authentication provider dependencies

Some of the plugins that manipulate the authentication process require the integration of a custom authentication provider into the login process. The default authentication provider is defined in the web.config (in the “authentication” setting) and this value should be changed if you want to make use of one or more of these plugins:

Password expiration (ID 205, Component M9442)
Self-service password change (ID 205, Component M9446)
TOTP authentication (ID 201, Component M9207)
Authentication events (P208, Component M9445)

If one of the above is used, changing the authentication setting is sufficient. The right value for the authentication setting can be found in the KB article covering the plugin settings.

If more than one of the above plugins is to be configured, it is also necessary to change the settings of the plugins so that it points to the next authentication provider. Each of the plugins has a built-in setting “.identificationprovider” that points to the Default authentication provider. You should change this setting for one or more of the plugins so that it points to the next plugin. This makes that the authentication providers are chained.

The suggested sequence is as follows:

Authentication events → Self service → Password expiration → TOTP → Default authentication.

So this makes the following configuration:

<add key="authentication" value="Novulo.Plugins.AuthenticationProcessEvents.AuthenticationProviders.AuthenticationProcessEventsAuthenticationProvider,NovuloAuthenticationProcessEvents"/>

<add key="AuthenticationProcessEventsAuthenticationProvider.identificationprovider" value="Novulo.Plugins.PasswordResetSelfService.AuthenticationProviders.SelfServicePasswordResetAuthenticationProvider, NovuloPasswordResetSelfService" />

<add key="SelfServicePasswordResetAuthenticationProvider.identificationprovider" value="Novulo.Plugins.PasswordExpiration.AuthenticationProviders.PasswordExpirationAuthenticationProvider, NovuloPasswordExpiration" />

<add key="PasswordExpirationAuthenticationProvider.identificationprovider" value="Novulo.Plugins.TOTPAuthentication.AuthenticationProviders.TOTPAuthenticationProvider, NovuloTOTPAuthentication" />

<add key="TOTPAuthenticationProvider.identificationprovider" value="Novulo.Framework.Controller.DefaultAuthenticationProvider, RightsSettings"/>

If any one of these plugins is not in your set-up, then remove the line and let the previous setting point to the next.

Topic		Replies	Views
Novulo OAuth2.0 configuration and usage Wiki rest , plugin	0	87	November 27, 2024
Novulo User Management Wiki implementation , plugin , getting-started	0	56	July 2, 2024
Require website user authentication [Q&A] Components, Datasets and Plug-ins rest	4	20	September 23, 2024
Using bearer token for authentication for end points [Q&A] Components, Datasets and Plug-ins rest	6	95	November 27, 2024
REST API calls and authorization [Q&A] Developer Tools rest	4	143	April 30, 2024

Authentication provider dependecies

Authentication provider dependencies

Related topics