6
 Followers
16
 Likes

SAML2.0 and OIDC authentication of Developer, studio, lifetime etc accounts

System Components
On our radar

A significant security and GDPR compliance requirement is being able to automatically disable accounts when staff leave the firm or a team.  Whilst we can build applications in OutSystems with various authentication options the only external authentication method available for the developer environment is adfs. Given the wide use of platforms such as OKTA for synchronising and managing cloud accounts it would be great if the OutSystems platform itself supported SAML2.0 and/or OIDC. 

Created on 25 Jun 2018
Comments (10)

Changed the category to Lifetime


Merged this idea with 'Add SAML integration to LifeTime and ServiceCenter' (created on 26 Jul 2016 08:36:52 by Remco Dekkinga)

For the larger companies there should be an option to login using SAML integration.

This will allow us to use 2FA login functionality and single-sign-on to Outsystems platform applications like ServiceCenter, LifeTime and Users.

This option can be placed behind a license-structure and a separate tab in the Administation page of Outsystems.



This comment was:
- originally posted on idea 'Add SAML integration to LifeTime and ServiceCenter' (created on 26 Jul 2016 by Remco Dekkinga)
- merged to idea 'SAML2.0 and OIDC authentication of Developer, studio, lifetime etc accounts' on 29 May 2019 09:00:10 by Fernando Moitinho

We have this built for our solution. It might be able to be applied to you as well. Our IT department uses SSO via SAMLv2 and the OutSystems team was able to get authentication to work with it.



This comment was:
- originally posted on idea 'Add SAML integration to LifeTime and ServiceCenter' (created on 26 Jul 2016 by Remco Dekkinga)
- merged to idea 'SAML2.0 and OIDC authentication of Developer, studio, lifetime etc accounts' on 29 May 2019 09:00:10 by Fernando Moitinho

Hi Nicholas,

I've also got a working solution for the apps we build, but I would like to have SSO via SAML on ServiceCenter and LifeTime. Did you manage to get SAML working on these applications too with the help of Outsystems? And are you also working in the Outsystems Cloud?

Kind regards, Remco



This comment was:
- originally posted on idea 'Add SAML integration to LifeTime and ServiceCenter' (created on 26 Jul 2016 by Remco Dekkinga)
- merged to idea 'SAML2.0 and OIDC authentication of Developer, studio, lifetime etc accounts' on 29 May 2019 09:00:10 by Fernando Moitinho

I highly agree, we would also like to see SAML integration as a Platform option. We have been looking into ways to implement 2FA authentication and would prefer not to build it ourselves. 



This comment was:
- originally posted on idea 'Add SAML integration to LifeTime and ServiceCenter' (created on 26 Jul 2016 by Remco Dekkinga)
- merged to idea 'SAML2.0 and OIDC authentication of Developer, studio, lifetime etc accounts' on 29 May 2019 09:00:10 by Fernando Moitinho

I'm surprised that this topic is still not closed after two years. I think security measures are becoming even more important these days. Having a two factor authentication at the developers/admin level is a must have in my opinion.




This comment was:
- originally posted on idea 'Add SAML integration to LifeTime and ServiceCenter' (created on 26 Jul 2016 by Remco Dekkinga)
- merged to idea 'SAML2.0 and OIDC authentication of Developer, studio, lifetime etc accounts' on 29 May 2019 09:00:10 by Fernando Moitinho

Totally agree! There is already a Lifetime Plugin to support this but the connection between Service Studio and Service Center still lacks some work.

Here it is the component: https://www.outsystems.com/forge/component-overview/4312/saml-platform-authentication-plugin



This comment was:
- originally posted on idea 'Add SAML integration to LifeTime and ServiceCenter' (created on 26 Jul 2016 by Remco Dekkinga)
- merged to idea 'SAML2.0 and OIDC authentication of Developer, studio, lifetime etc accounts' on 29 May 2019 09:00:10 by Fernando Moitinho
Changed the status to
On our radar


Hi Paul Davies,

Thanks for the feedback. We are actively looking into this problem.

We will keep you posted.


Thanks,

Changed the category to System Components


views
918
Followers
6