Skip to content
This repository has been archived by the owner on Sep 18, 2021. It is now read-only.

Question: WAAD integration #66

Closed
MainDevel opened this issue Apr 28, 2014 · 3 comments
Closed

Question: WAAD integration #66

MainDevel opened this issue Apr 28, 2014 · 3 comments
Labels

Comments

@MainDevel
Copy link

I would like to know if you will support WAAD as primary authentication system and also authentication with other social identity providers (I mean to display the “login page” of WAAD at the left side of the screen and to continue displaying the other IP buttons).

Thanks in advance.

@leastprivilege
Copy link
Member

No - the "left side of the screen" will be local logins. I don't even think that you can embed the WAAD login screen (that would be a security problem) - but we will support WAAD as an identity provider (either via ws-fed or openid).

@MainDevel
Copy link
Author

oh. I was thinking in a scenario where a "cloud" application hosted in azure uses WAAD to do the login.... but it also allows to login using other IPs.

The idea was to show the WAAD login screen inside an IFRAME. Do you consider it a security problema?

@leastprivilege
Copy link
Member

If the primary IdP is WAAD, it would be WAAD's job to allow 3rd party logins ;)

Typically you would not allow an third party to load the login/consent screens in an iframe since this enables click jacking attacks. I assume WAAD would not allow this.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
Projects
None yet
Development

No branches or pull requests

2 participants