You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@syncope.apache.org by "Francesco Chicchiriccò (Confluence)" <no...@apache.org> on 2019/09/03 07:40:00 UTC
[CONF] Apache Syncope > Authentication features
There's **1 new edit** on this page
---
|
---
| | [](https://cwiki.apache.org/confluence/display/SYNCOPE/Authentication+features?src=mail&src.mail.product=confluence-
server&src.mail.timestamp=1567496400157&src.mail.notification=com.atlassian.confluence.plugins.confluence-
notifications-batch-plugin%3Abatching-
notification&src.mail.recipient=8aa980874e36a1eb014e36a2c41679b9&src.mail.action=view
"page icon")
---
[Authentication
features](https://cwiki.apache.org/confluence/display/SYNCOPE/Authentication+features?src=mail&src.mail.product=confluence-
server&src.mail.timestamp=1567496400157&src.mail.notification=com.atlassian.confluence.plugins.confluence-
notifications-batch-plugin%3Abatching-
notification&src.mail.recipient=8aa980874e36a1eb014e36a2c41679b9&src.mail.action=view
"Authentication features")
| | | | |  | | Francesco
Chicchiriccò edited this page
---
|
| | Here's what changed:
---
|
Tracked as [SYNCOPE-160](https://issues.apache.org/jira/browse/SYNCOPE-160).
1. Standard set of authentication modules, and API to extend / create new ones:
1. [JAAS](https://en.wikipedia.org/wiki/Java_Authentication_and_Authorization_Service)
2. username / password with different back-ends (DBMS, LDAP, ...)
3. TLS client certificate
4. [Time-based One-time password](https://en.wikipedia.org/wiki/Time-based_One-time_Password_algorithm)
5. SAML 2.0 SP
6. OpenID Connect 1.0 Client
7. Radius
8. Kerberos
9. [U2F](https://en.wikipedia.org/wiki/Universal_2nd_Factor)
10. [WebAuthn](https://en.wikipedia.org/wiki/WebAuthn)
11. ...
2. Authentication chains by combining more authentication modules, similar to Linux's PAM (required, sufficient, requisite, ...)
1. Step-up authentication (e.g. associate level to authentication modules in a chain, and let 3rd party apps require minimum level to access)
2. Multi-factor authentication
---
| | | [Go to page
history](https://cwiki.apache.org/confluence/pages/viewpreviousversions.action?pageId=127406278&src=mail&src.mail.product=confluence-
server&src.mail.timestamp=1567496400157&src.mail.notification=com.atlassian.confluence.plugins.confluence-
notifications-batch-plugin%3Abatching-
notification&src.mail.recipient=8aa980874e36a1eb014e36a2c41679b9 "Go to page
history")
---
---
| [View
page](https://cwiki.apache.org/confluence/display/SYNCOPE/Authentication+features?src=mail&src.mail.product=confluence-
server&src.mail.timestamp=1567496400157&src.mail.notification=com.atlassian.confluence.plugins.confluence-
notifications-batch-plugin%3Abatching-
notification&src.mail.recipient=8aa980874e36a1eb014e36a2c41679b9&src.mail.action=view)
---
| | [Stop watching
space](https://cwiki.apache.org/confluence/users/removespacenotification.action?spaceKey=SYNCOPE&src=mail&src.mail.product=confluence-
server&src.mail.timestamp=1567496400157&src.mail.notification=com.atlassian.confluence.plugins.confluence-
notifications-batch-plugin%3Abatching-
notification&src.mail.recipient=8aa980874e36a1eb014e36a2c41679b9&src.mail.action=stop-
watching&jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdWIiOiJ4c3JmOjhhYTk4MDg3NGUzNmExZWIwMTRlMzZhMmM0MTY3OWI5IiwicXNoIjoiYmEzZjg1M2Y1NGE5NGRiNWE2NjYwZTVmNjk0MzZlMmMwMTkwYWE2NWE5Yzg3MjUwMzgzMTQ0ZTAwMzM3ZmNlZCIsImlzcyI6ImNvbmZsdWVuY2Vfbm90aWZpY2F0aW9uc0FSRUgtWFVEMS1QT1FHLUNTQU8iLCJleHAiOjE1NjgxMDEyMDAsImlhdCI6MTU2NzQ5NjQwMH0.uNnZCziUBGE6YwmB4wL7vQPjwhTykSGLc0xf-
rWryKQ) | •
---|---
[Manage
notifications](https://cwiki.apache.org/confluence/users/editmyemailsettings.action?src=mail&src.mail.product=confluence-
server&src.mail.timestamp=1567496400157&src.mail.notification=com.atlassian.confluence.plugins.confluence-
notifications-batch-plugin%3Abatching-
notification&src.mail.recipient=8aa980874e36a1eb014e36a2c41679b9&src.mail.action=manage)
---
| 
---
This message was sent by Atlassian Confluence 6.15.8
---