You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@isis.apache.org by Victor Oomens <vi...@oomens-ict.nl> on 2020/04/16 12:01:51 UTC

2FA?

Hi,

This question is probably not new, but I was wondering if there’s an easy way to integrate 2FA/OTP, like Google Authenticator, into Apache Isis.

Regards,

Victor Oomens

Re: 2FA?

Posted by Sander Ginn <sa...@ginn.it>.

We have not been in a position to extensively test Keycloak + Isis yet, but from what I've seen it worked fine.
I expect that we'll be integrating Keycloak in our Estatio deployment at some point - that will give us some proper feedback.

Best
Sander

> On 16 Apr 2020, at 17:32, Victor Oomens <vi...@oomens.net> wrote:
> 
> Thanks guys, I will give it a try!
> 
>> Op 16 apr. 2020, om 16:57 heeft Dan Haywood <da...@haywood-associates.co.uk> het volgende geschreven:
>> 
>> yep, that was my suggestion also.
>> Any glitches with that integration, Sander, or is it pretty easy to get
>> working?
>> 
>> Cheers
>> Dan
>> 
>> 
>> On Thu, 16 Apr 2020 at 15:00, Sander Ginn <sa...@ginn.it> wrote:
>> 
>>> Hi Victor,
>>> 
>>> I would say that the most straightforward method of achieving this is by
>>> using the Keycloak security module [1] combined with a Keycloak
>>> configuration that mandates 2FA through OTPs [2].
>>> 
>>> Best
>>> Sander
>>> 
>>> [1] https://isis.apache.org/security/2.0.0-M3/keycloak/about.html <
>>> https://isis.apache.org/security/2.0.0-M3/keycloak/about.html>
>>> [2] https://www.keycloak.org/docs/latest/server_admin/#otp-policies <
>>> https://www.keycloak.org/docs/latest/server_admin/#otp-policies>
>>> 
>>>> On 16 Apr 2020, at 14:01, Victor Oomens <vi...@oomens-ict.nl>
>>> wrote:
>>>> 
>>>> Hi,
>>>> 
>>>> This question is probably not new, but I was wondering if there’s an
>>> easy way to integrate 2FA/OTP, like Google Authenticator, into Apache Isis.
>>>> 
>>>> Regards,
>>>> 
>>>> Victor Oomens
>>> 
>>> 
>

Re: 2FA?

Posted by Victor Oomens <vi...@oomens.net>.

Thanks guys, I will give it a try!

> Op 16 apr. 2020, om 16:57 heeft Dan Haywood <da...@haywood-associates.co.uk> het volgende geschreven:
> 
> yep, that was my suggestion also.
> Any glitches with that integration, Sander, or is it pretty easy to get
> working?
> 
> Cheers
> Dan
> 
> 
> On Thu, 16 Apr 2020 at 15:00, Sander Ginn <sa...@ginn.it> wrote:
> 
>> Hi Victor,
>> 
>> I would say that the most straightforward method of achieving this is by
>> using the Keycloak security module [1] combined with a Keycloak
>> configuration that mandates 2FA through OTPs [2].
>> 
>> Best
>> Sander
>> 
>> [1] https://isis.apache.org/security/2.0.0-M3/keycloak/about.html <
>> https://isis.apache.org/security/2.0.0-M3/keycloak/about.html>
>> [2] https://www.keycloak.org/docs/latest/server_admin/#otp-policies <
>> https://www.keycloak.org/docs/latest/server_admin/#otp-policies>
>> 
>>> On 16 Apr 2020, at 14:01, Victor Oomens <vi...@oomens-ict.nl>
>> wrote:
>>> 
>>> Hi,
>>> 
>>> This question is probably not new, but I was wondering if there’s an
>> easy way to integrate 2FA/OTP, like Google Authenticator, into Apache Isis.
>>> 
>>> Regards,
>>> 
>>> Victor Oomens
>> 
>>

Re: 2FA?

Posted by Dan Haywood <da...@haywood-associates.co.uk>.

yep, that was my suggestion also.
Any glitches with that integration, Sander, or is it pretty easy to get
working?

Cheers
Dan


On Thu, 16 Apr 2020 at 15:00, Sander Ginn <sa...@ginn.it> wrote:

> Hi Victor,
>
> I would say that the most straightforward method of achieving this is by
> using the Keycloak security module [1] combined with a Keycloak
> configuration that mandates 2FA through OTPs [2].
>
> Best
> Sander
>
> [1] https://isis.apache.org/security/2.0.0-M3/keycloak/about.html <
> https://isis.apache.org/security/2.0.0-M3/keycloak/about.html>
> [2] https://www.keycloak.org/docs/latest/server_admin/#otp-policies <
> https://www.keycloak.org/docs/latest/server_admin/#otp-policies>
>
> > On 16 Apr 2020, at 14:01, Victor Oomens <vi...@oomens-ict.nl>
> wrote:
> >
> > Hi,
> >
> > This question is probably not new, but I was wondering if there’s an
> easy way to integrate 2FA/OTP, like Google Authenticator, into Apache Isis.
> >
> > Regards,
> >
> > Victor Oomens
>
>

Re: 2FA?

Posted by Sander Ginn <sa...@ginn.it>.

Hi Victor,

I would say that the most straightforward method of achieving this is by using the Keycloak security module [1] combined with a Keycloak configuration that mandates 2FA through OTPs [2].

Best
Sander

[1] https://isis.apache.org/security/2.0.0-M3/keycloak/about.html <https://isis.apache.org/security/2.0.0-M3/keycloak/about.html>
[2] https://www.keycloak.org/docs/latest/server_admin/#otp-policies <https://www.keycloak.org/docs/latest/server_admin/#otp-policies>

> On 16 Apr 2020, at 14:01, Victor Oomens <vi...@oomens-ict.nl> wrote:
> 
> Hi,
> 
> This question is probably not new, but I was wondering if there’s an easy way to integrate 2FA/OTP, like Google Authenticator, into Apache Isis.
> 
> Regards,
> 
> Victor Oomens