OTK - Hosting login page on external page

View Only

Back to discussions

Expand all | Collapse all

OTK - Hosting login page on external page

Jump to Best Answer

1. OTK - Hosting login page on external page

1 Recommend
Eduardo Oliveira
Posted Jul 16, 2019 07:52 AM

Reply Reply Privately
Hi, we will be pleased if anyone can help us with the following questions:

We are trying to host the login and consent web page in a external web server.
We find the following page:
https://docops.ca.com/ca-api-management-oauth-toolkit/4-3/en/customizing-the-oauth-toolkit/configure-the-authorization-server
This page points to this unvalaible blog post:
https://communities.ca.com/blogs/oauth/2016/10/04/howto-integrating-otk-with-external-login-server

We would like to point to external page put still uses the current login policy for 'backend' which is the best way of doing that?
We know that is possible to just override the login html but that will bring some limitations to the developement team.

We also want to skip consent based on a client custom property, is there a standart way of doing that?

Best regards
Eduardo Oliveira
2. RE: OTK - Hosting login page on external page
Best Answer

0 Recommend
Leandro Dantas
Posted Jul 16, 2019 09:30 AM

Reply Reply Privately
Hello.

We would like to point to external page put still uses the current login policy for 'backend' which is the best way of doing that?
We know that is possible to just override the login html but that will bring some limitations to the developement team.
The flow described in that article redirects you to a third party that will have full responsability on authentication. They should fill the sessionData with auth information and redirects back to gateway.

If I understand correctly, you want just an 'unlimited' auth page but use otk service to continue the flow, right? If so, you could replace the assertion with the OTK HTML code with a routing assertion to a static content server or just redirect the login page to your static content. Ensure these pages will submit all the info in the same fashion as OTK original html and it should work.

We also want to skip consent based on a client custom property, is there a standart way of doing that?
Standard way, no. The OAuth protocol demands a consent.
But you can implement this behavior on consent phase, decoding the sessionData jwt shared between the flow requests, set the values simulating the consent and reencode. You can get the encode/decode jwt key from OTK configurations.

------------------------------
Sr. Consultant Services
HCL Enterprise Studio
------------------------------

Original Message
3. RE: OTK - Hosting login page on external page

0 Recommend
Remco Dekker
Posted Dec 08, 2020 10:12 AM

Reply Reply Privately
Since Broadcom techdocs for the OTK still refers to an old link for this blog on the CA communities and I had trouble finding it, here the proper one:

https://community.broadcom.com/enterprisesoftware/blogs/uzi-cohen1/2019/08/20/howto-integrating-otk-with-external-login-server

------------------------------
Consultant API Management
Enable U
------------------------------

Original Message

Layer7 API Management

OTK - Hosting login page on external page

Eduardo OliveiraJul 16, 2019 07:52 AM

Leandro DantasJul 16, 2019 09:30 AMBest Answer

Remco DekkerDec 08, 2020 10:12 AM

1. OTK - Hosting login page on external page

2. RE: OTK - Hosting login page on external page Best Answer

3. RE: OTK - Hosting login page on external page

2. RE: OTK - Hosting login page on external page
Best Answer