jboss.org
  1. jboss.org
  2. ORG-1867

Provide URL for HTTP POST web login

    Details

    • Type: Feature Request Feature Request
    • Status: Open Open (View Workflow)
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: sso.jboss.org
    • Security Level: Public (Everyone can see)
    • Labels:
      None
    • Similar Issues:
      Show 10 results 

      Description

      Such URL could use other services for their own Login Form page.

        Issue Links

          Activity

          Hide
          Vlastimil Eliáš
          added a comment -

          I have to note providing username and password in other system and then postiong is to the SSO server is antipattern for centralized SSO server solution.
          But for this one case "Automatically Login to Jive after registration" we have to provide it because there is not any other way probably.

          But we will use some hash with limited time validity instead of plain text password here at least to get it more secure. And everything over https only definitely.

          Show
          Vlastimil Eliáš
          added a comment - I have to note providing username and password in other system and then postiong is to the SSO server is antipattern for centralized SSO server solution. But for this one case "Automatically Login to Jive after registration" we have to provide it because there is not any other way probably. But we will use some hash with limited time validity instead of plain text password here at least to get it more secure. And everything over https only definitely.

            People

            • Assignee:
              Vlastimil Eliáš
              Reporter:
              Libor Krzyžanek
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated: