oauth 2.0 - Prompt for AD credentials on every OAuth2 authorize request -


we have application own authentication, added oauth2 support. corporate customer can specify data adfs or google domain, , use automatically sign , log in users.

now, problem switching credentials. when log out our application, clicking login button (which redirects configured adfs oauth2 authorize endpoint) validate user , send him our app, valid code current credentials.

the google endpoint has special parameter, approval_prompt, can use force intermediate step, @ user can switch credentials. don't think adfs has that.

what other solutions have? possible configure on adfs server prompt user enter credentials every authorize request?

here's how url parameters work, best understand them:

  • wa operation we're requesting. far, i've seen 2 values: wsignin1.0 , wsignout1.0
  • wfresh has max age of cached credentials, don't entirely understand it. 0 means don't use cached credentials.
  • wtrealm appid configured in adfs. tells adfs server app trying authenticate. us, base url of app.
  • wctx app-specific data returned app adfs server after request. since we're using standard system.identitymodel setup, handles parsing , reacting value, not our code. there's ru parameter encoded inside it. return url. how page came from.
  • wct timestamp of authentication request

Comments

Post a Comment

Popular posts from this blog

Magento/PHP - Get phones on all members in a customer group -

i working on custom magento extension. working around adminhtml part , i've created custom form there. here form code: <?php class vivasindustries_smsnotification_block_adminhtml_sms_sendmass_edit_form extends mage_adminhtml_block_widget_form { public function _preparelayout() { $extensionpath = mage::getmoduledir('js', 'vivasindustries_smsnotification'); $head = $this->getlayout()->getblock('head'); $head->addjs('jquery.js'); $head->addjs('vivas.js'); return parent::_preparelayout(); } protected function _prepareform() { $form = new varien_data_form(array( 'id' => 'edit_form', 'action' => $this->geturl('*/*/save', array('id' => $this->getrequest()->get...
Read more

php - Bypass Geo Redirect for specific directories -

i'm trying bypass redirect specific url within site. wondering if might able help. the code below code use, original urls replaces example.com i'd able access http://example.com/admin without redirect occuring. is there way this, , there way using own ip? function country_geo_redirect() { $country = getenv('http_geoip_country_code'); if ($country == "us" ) { wp_redirect("http://usa.example.com/"); exit; } else if ($country == "gb" ) { wp_redirect("http://uk.example.com/"); exit; } } add_action('init', 'country_geo_redirect'); you can bypass redirection code if server found ip address. if ip address == <my ip address> ' nothing here else country_georedirect() end if
Read more

php - .htaccess mod_rewrite for dynamic url which has domain names -

i want convert url ex:( example.com/link.php?url=facebook.com ) ( example.com/facebook.com.php ) how can using .htaccess. or there other process make job easier ? i tried adding script .htaccess file options +followsymlinks rewriteengine on rewriterule url-(.*)\.htm$ link.php?url=$1 but converting url adding "url-" ( example.com/url-facebook.com.php ) i want remove "url-" , want make ( example.com/facebook.com.php ) rewriteengine on rewritecond %{the_request} ^get.*link\.php\?url\= [nc] rewritecond %{request_uri} !/system/.* [nc] rewriterule (.*?)link\.php\?url\=/*(.*) /$1$2 [r=301,ne,l] not sure how above work edit of used use remove index.php url
Read more