You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Jan Bernhardt (JIRA)" <ji...@apache.org> on 2015/11/19 14:22:10 UTC
[jira] [Commented] (FEDIZ-138) Improve IDP Login experience
[ https://issues.apache.org/jira/browse/FEDIZ-138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15013521#comment-15013521 ]
Jan Bernhardt commented on FEDIZ-138:
-------------------------------------
Hi Sergey,
a user friendly login page is already available within the current Fediz version. You just need to uncomment the {{security:form-login}} statement in the {{security-config.xml}}. The login page is located at {{cxf-fediz/services/idp/src/main/webapp/WEB-INF/views/signinform.jsp}}. Feel free to improve the look and feel of that page.
I also agree with you that the user friendly login page should be the default login page. Changing this will require to update some Unit Tests as they currently expect a 401 Status code in some cases.
I guess it will not be so easy to provide a composite login page because this requires to change the current login flow. But I also agree with you that it would be better from a user experience point of view.
Regards
Jan
> Improve IDP Login experience
> ----------------------------
>
> Key: FEDIZ-138
> URL: https://issues.apache.org/jira/browse/FEDIZ-138
> Project: CXF-Fediz
> Issue Type: Improvement
> Components: IDP
> Affects Versions: 1.3.0
> Reporter: Sergey Beryozkin
> Priority: Minor
>
> Proposal:
> The first step is to replace the default name/password Spring Security name/password dialog with a more user friendly page asking for the name and password with some Welcome IDP banner, the default dialog is of course can be replaced in the product - but it would be good to have something better even OOB. I'm assuming it would require customizing the authentication/MVC flow.
> The second step: at the moment, if no realm is provided by RP, IDP form is displayed, where a user is asked to select a home realm, and then the user is challenged with the authentication dialog, thus if a user is expected to authenticate into the current IDP then two screens/steps are involved. Thus it all should be combined into a single page. Example: a form would have name/password fields so that a user can authenticate immediately into the current realm and if partner IDPs are available then the form would also have buttons like "SignIn with IDP B", "SignIn with IDP C".
> I guess this is also customizable in the production but it would nice to have a composite page available OOB. IMHO this would be in line with the best login practices (such as those advocated by Google, etc, where a user is expected to press a minimum number of buttons during the login process)
>
>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)