Authentication HTTP Form

Introduction

The following authentication mechanism is implemented:

Checks the provided username and password parameters using the .
Maps the username to a Resource ID using the .
Stores the mapped Resource ID in the HTTP Session. The name of the session attribute is provided by the AuthenticationSessionAttributeNames interface from the module.

If any of the above steps fails, the user will be redirected to a failure URL, otherwise to a success URL.

Important

This component is responsible to match the credentials and to store the authentication information in the session. It is recommended to use this component with to read this authentication information from session and execute an authenticated process.

Configuration

Username parameter name: The name of the form parameter that stores the username.
Password parameter name: The name of the form parameter that stores the password.
Success URL: The URL where the user will be redirected by default in case of a successful authentication.
Success URL parameter name: The name of the parameter that stores the URL where the user will be redirected in case of a successful authentication. If the request contains this parameter, it overrides the "Success URL" configuration.
Failed URL: The URL where the user will be redirected by default in case of a failed authentication.
Failed URL parameter name: The name of the parameter that stores the URL where the user will be redirected in case of a failed authentication. If the request contains this parameter, it overrides the "Failed URL" configuration.

Concept

Full authentication concept is available on blog post Everit Authentication. Implemented components based on this concept are listed here.