Project

General

Profile

Actions

Bug #6721

closed

Feature #6711: refactoring of lavoisier security

support chaining authentication attempts

Added by Reynaud Sylvain over 10 years ago. Updated over 10 years ago.

Status:
Resolved
Priority:
Normal
Assigned To:
Category:
Service
Target version:
Start date:
04/18/2014
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)

Description

PRE-REQUISITE: we must be able to distinguish abort from failure for each authentication mode.

Authentication attempt is considered as aborted if:
  • X509: usage of protocol HTTP instead of HTTPS
  • PASSWORD: users clics on the button "cancel"
  • IP: the list of authenticated IP does not contain user's IP
  • CAS: to be defined...
Authentication attempt is considered as failed if:
  • X509: CA is unknown
  • PASSWORD: unknown user or wrong password
  • IP: NEVER FAILS !!!
  • CAS: to be defined...
Authentication is considered as failed:
  • either if ANY authencation attempt has failed
  • or if ALL the authentication attempt have been canceled

Subtasks 2 (0 open2 closed)

Feature #6927: BasicAuthenticator user CANCELResolvedSchwarz Lionel04/18/2014

Actions
Feature #6928: Cas Authentication "Abort"RejectedSchwarz Lionel04/18/2014

Actions
Actions

Also available in: Atom PDF