You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Jan Bernhardt (JIRA)" <ji...@apache.org> on 2015/11/19 14:22:10 UTC

[jira] [Commented] (FEDIZ-138) Improve IDP Login experience

    [ https://issues.apache.org/jira/browse/FEDIZ-138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15013521#comment-15013521 ] 

Jan Bernhardt commented on FEDIZ-138:
-------------------------------------

Hi Sergey,

a user friendly login page is already available within the current Fediz version. You just need to uncomment the {{security:form-login}} statement in the {{security-config.xml}}. The login page is located at {{cxf-fediz/services/idp/src/main/webapp/WEB-INF/views/signinform.jsp}}. Feel free to improve the look and feel of that page.

I also agree with you that the user friendly login page should be the default login page. Changing this will require to update some Unit Tests as they currently expect a 401 Status code in some cases.

I guess it will not be so easy to provide a composite login page because this requires to change the current login flow. But I also agree with you that it would be better from a user experience point of view.

Regards
Jan


> Improve IDP Login experience
> ----------------------------
>
>                 Key: FEDIZ-138
>                 URL: https://issues.apache.org/jira/browse/FEDIZ-138
>             Project: CXF-Fediz
>          Issue Type: Improvement
>          Components: IDP
>    Affects Versions: 1.3.0
>            Reporter: Sergey Beryozkin
>            Priority: Minor
>
> Proposal:
> The first step is to replace the default name/password Spring Security name/password dialog with a more user friendly page asking for the name and password with some Welcome IDP banner, the default dialog is of course can be replaced in the product - but it would be good to have something better even OOB. I'm assuming it would require customizing the authentication/MVC flow.
> The second step: at the moment, if no realm is provided by RP, IDP form is displayed, where a user is asked to select a home realm, and then the user is challenged with the authentication dialog, thus if a user is expected to authenticate into the current IDP then two screens/steps are involved. Thus it all should be combined into a single page. Example: a form would have name/password fields so that a user can authenticate immediately into the current realm and if partner IDPs are available then the form would also have buttons like "SignIn with IDP B", "SignIn with IDP C". 
> I guess this is also customizable in the production but it would nice to have a composite page available OOB. IMHO this would be in line with the best login practices (such as those advocated by Google, etc, where a user is expected to press a minimum number of buttons during the login process)
>   
>  



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)