How can I login to MayaOnline and connect my clusters to it? How does the authentication workflow happen?
At present MayaOnline supports authentication using Github credentials. If you have github account, you can sign into MayaOnline and import the clusters.
Related
I am using Open ID Connect (OIDC) to authenticate users into a web application and Okta org as an authorization server, where issuer is https://{subdomain}.okta.com.
And I am facing an issue which has already been registered as a bug and an Merge Request has already been registered on Okta-Oidc-js
HERE and HERE
This is a Node Library and the same library is in Golang as well and it does not have any issue's as such.
I have an application that going to be on Production in upcoming months and I don't know, when these MR's will get merged. What are the alternative ways to tackle this case?
Any suggestions would be appreciated.
I want to connect my own system to gitlab only for authentication.
After that i should be able to manage all the usernames and passwords of gitlab through my system.
Could you please help me to solve this scenario. Thank you.
That would be using the GitLab User API (as admin of your GitLab instance)
You can then add SSH keys for a user, or modify an existing user account (including their password)
You can do so through any number of GitLab API client.
I have a nodejs webapp with many users with a custom login process. I would like gitlab to accept that authentication and not force users to create a new app. What is the best way to accomplish this?
I would go for OAuth 2.0 Single Sign On (SSO). Below you can find the architecture diagram taken from here. As you can see the client is redirected to log in in the OAuth2 provider to get a valid token for authentication. The OAuth2 server must be configured for the application requesting access including the secret, the client id and the callback URL.
You can configure GitLab CE to sign in with almost any OAuth2 provider. Only be careful with the limitations:
It can only be used for Single Sign on, and will not provide any other access granted by any OAuth provider (importing projects or users, etc)
It only supports the Authorization Grant flow (most common for client-server applications, like GitLab)
It is not able to fetch user information from more than one URL
It has not been tested with user information formats other than JSON
You also need to configure your node js web application as an OAuth2 server. There are npm availables with the source code here.
Recommendation
I would install some open source Identity Management to separate the user management from your webapp, provides better integration with other third parties and forget about encryption and other stuff you need to take care in your webapp. There are multiple options such as KeyCloak for instance.
You have to define a dedicated user , and use the private_token of this user to login for ALL users that will use your application.
The restricition would imply all users will have the same rights ....
The other solution is to use the Private Token of the user at login. In this case , only the rights of these particular users will be used.
I'm attempting to create a simple Hybrid Application with native API using Cordova.
I think to use a simple REST API remote to retrieve user information.
First time users have to register into server to gain account, and then the app could manage all user's api via AJAX calls.
Now, I'll appreciate your opinions and suggestions about:
I thought use LARAVELL to manage routing and authentication: there's some contraindication to this approach?
(and principal question): I've no advanced notions about security... so someone can suggest how to manage security data and remote login?
For example: store user password and username to localStorage, and send username + token to remote DB.
My problem is how implement security when make remote REST call, that is how pass data for remote connection.
I hope my questions are understandable...
Thanks
Found complete tutorial to my answer, via JWT and access tokens.
The link is:
https://scotch.io/tutorials/token-based-authentication-for-angularjs-and-laravel-apps
Very very powerful!
Hope help someone,
I looking to authenticate users using OpenID Connect, Node.js, Passport.js against Azure AD. Could you please point me to any resources/docs and/or sample code?
I came across passport-openidconnect. Is this still the active module? are you aware of any other module that I could use for this? If so if you could point me to some sample code that would be great!
There is a passport module specifically for Azure AD called passport-azure-ad
The steps to do set this up are:
Register your application (in Azure AD)
Install all the required npm packages.
Setup your app to use the passport-azure-ad.
3.a Setup the passport strategy
3.b Add methods to keep track of logged in users
3.c Initialize passport while loading the express engine
3.d Add the routes that will handle login/logoff
Use passport to issue sign-in and sign-out requests to Azure AD
Check out the official docs (which include a sample) for code for each of these steps: https://azure.microsoft.com/en-us/documentation/articles/active-directory-devquickstarts-openidconnect-nodejs/
The answer to your question is positive. There are several node.js modules you can use to implement authentication via AAD.
You can use the ADAL for node.js library, which makes it easy for node.js applications to authenticate to AAD in order to access AAD protected web resources. Please refer to https://github.com/AzureAD/azure-activedirectory-library-for-nodejs for details and code samples.
You can use third-party module such as passport-azure-ad, please refer to https://github.com/Azure-Samples/active-directory-node-webapp-openidconnect for the sample which implement the requirement leveraging express and passport-azure-ad.
Any further concern, please feel free to let me know.