NetSQLAzman

  
Has anyone tried using NetSQLAzman for Outsystems Authentication and authorization? If so, do you have any tips on how to implement it?

Thanks,

Clay
Hi Clayton,

In the OutSystems technology you already have a security framework (with authentication and authorization) that is tighly integrated with the OutSystems Visual Modelling language that you use in Service Studio.
  • At development time you use the concept of PermissionArea to determine and use the permissions that exist in your application;
  • At configuration time, you use the User Management capabilities of the Enterprise Manager component  to configure the Users, Permissions, and Roles;
  • In runtime, a user logs in using the Single-Sign-On process that is already in place, and the OutSystems platform maintains the security context of  the user so that he can only access the functionality that he can use;
Is there a specific reason why you need to integrate with that external Authentication and authorization engine?

Kind Regards,

Daniel Lourenço
OutSystems
Daniel;

Thanks for the response. I was aware of what OutSystems already offers in terms of the security framework. However, we have many different .net applications that we run and manage and currently we implement NetSQLAzman to handle authentication and authorization for those applications. I was asked to research the possibility/feasability of using NetSQLAzman with our OutSystems implementation in place of the default security framework so that we could work with one solution across as many of our deployed applications as possible.

Clay
Hi Clay,

Do you have information in your current authentication system that you would like to reuse in OutSystems? For example, do you already have a User Database or enterprise wide Roles that you would also be able to refer in OutSytems platform configuration?
If that is the case, the best solution would be to create an OutSystems timer that "synchronizes" that information with the OutSystems User and User Configuration tables. By doing that, you can then use that information to configure your users.

Would this make sense for you?

Kind Regards,

Daniel Lourenço
OutSystems
Hi Daniel,

As request by user, we need to integrate external sso with OutSystems. Do you have any tips on how to integrate it?

Best Regards
Jun
Hi Clay,

What exactly is the integration you want to do? You want to "validate" your users agains an external Authentication Mechanism when they login in an OutSystems application? Do you want to inlude an OutSystems application with SSO in a portal?

Normally, when integrating with external Identity Providers, all you have to do is customize the OutSystems login process. You integrate using the APIs made availalble by the external authentication provider (with Web Services or Integration Studio) and you adapt the login process of your application so that the user/password validation is done against the external repository.



One thing that normally also makes sense considering is creating a user synchronization process (with a timer) from the external repository to the OutSystems database (to avoid having to provision the users in both systems).

Kind Regards,

Daniel Lourenço
Hi Daniel, 

Can you point us to an example of an implementation of the user synchronization you mention, preferably to Active Directory?

How about integration to oAuth 2.0 standard that Gmail, LinkedIn, Facebood + others use?
Lee Hinman wrote:
How about integration to oAuth 2.0 standard that Gmail, LinkedIn, Facebood + others use?
 
 We already did this, via custom solution.

I would like to know if anybody has tried SAML 2.0 integration with Outsystems. Please share your experience. 
Hi Community, I would also appreciate experience sharing with SAML 2.0 and Outsystems.