Icon View Thread

The following is the text of the current message along with any replies.
Messages 1 to 5 of 5 total
Thread Two Factor Authentication (2FA).
Fri, Mar 12 2021 5:17 PMPermanent Link

Steve Gill

Avatar

Has anyone tried implementing Two Factor Authentication in EWB3 that works with Google Authenticator?

= Steve
Fri, Mar 12 2021 9:30 PMPermanent Link

erickengelke

Avatar

Steve Gill wrote:
> Has anyone tried implementing Two Factor Authentication in EWB3 that works with Google Authenticator?

I've got 2FA working with ADFS, SAML and OpenID COnnect - that should work with Google because they would use OpenIDConnect probably.

The trick I used was to use an Apache server with PHP and ProxyHTTP pointing to my server box, and the private box firewalled so you have to go through the APache server.  

Then I create an jwt token on the APache PHP, and set it as a cookie so the real app server receives the JWT token which authenticates the user.   Look up jwt.io for examples of how that works.  It includes the user's ID and a signature that proves they are authenticated.

Erick
EWB Programming Books and Component Library
http://www.erickengelke.com
Sat, Mar 13 2021 3:57 PMPermanent Link

Steve Gill

Avatar

Hi Erick,

<< I've got 2FA working with ADFS, SAML and OpenID COnnect - that should work with Google because they would use OpenIDConnect probably.

The trick I used was to use an Apache server with PHP and ProxyHTTP pointing to my server box, and the private box firewalled so you have to go through the APache server.  

Then I create an jwt token on the APache PHP, and set it as a cookie so the real app server receives the JWT token which authenticates the user.   Look up jwt.io for examples of how that works.  It includes the user's ID and a signature that proves they are authenticated. >>

Sounds complicated.  Thanks, I'll look into it.

= Steve
Tue, May 4 2021 5:09 PMPermanent Link

Tim Young [Elevate Software]

Elevate Software, Inc.

Avatar

Email timyoung@elevatesoft.com

Steve,

<< Has anyone tried implementing Two Factor Authentication in EWB3 that works with Google Authenticator? >>

I have to get a couple of other things like the FileReader support done first, but OAuth is definitely something that I intend to implement ASAP.

Tim Young
Elevate Software
www.elevatesoft.com
Tue, May 4 2021 7:11 PMPermanent Link

Steve Gill

Avatar

<< I have to get a couple of other things like the FileReader support done first, but OAuth is definitely something that I intend to implement ASAP. >>

Thanks Tim!

= Steve
Image