worklight-security

IBM Worklight 6.1 - Is it possible to create a Challenge Handler in native class instead of JavaScript?

醉酒当歌 提交于 2019-12-10 11:57:49
问题 We are writing a Hybrid application mixed with Native pages in worklight 6.1 for ios . We are now implementing security features on adapter-side and I have read the documentation for it from Adapter Based Authentication. My problem is that our login module is implemented in a fully native page and I would like to also implement the challenge handler over there. How can this be achieved? 回答1: You can write challenge handlers in native by following the Worklight iOS native APIs (http://ibm.co

IBM Worklight 6.0 - wl_antiXSRFRealm error after deploying adapter to Worklight Server

守給你的承諾、 提交于 2019-12-08 12:52:33
问题 I am currently working on a push notifications demo using Worklight v6.0 Enterprise Edition. As part of the demo, I created a new Worklight project in Worklight studio. I also imported the push notifications sample project into the same workspace I copied the supplied authenticationConfig.xml file from the push notification sample project into my new project (replacing the file) I also modified the application-descriptor.xml in my new project to reference the securityTest in the

How to implement OAUTH 2.0 in IBM Worklight 6.0

允我心安 提交于 2019-12-07 08:02:01
问题 In my app I have implemented Login module auth security by implementing security realms. But i am thinking of implementing a OAUTH2.0 authentication where user will be authenticated once I will get a token and re-validate than on app starts. So please one guide what are the prerequisites to implement this. Can I achieve this by creating a custom authentication module ? Any guide sample code will be really helpful. 回答1: There is an article that was published that shows how to use OAuth with

Missing Secure attributes in cookies: WL_PERSISTENT_COOKIE and testcookie

主宰稳场 提交于 2019-12-06 06:27:16
问题 In a security scan result, I received the following error: "Missing Secure Attribute in Encrypted Session (SSL) Cookie" for WL_PERSISTENT_COOKIE and testcookie. I don't know how to set the secure attribute for these cookies, from the websphere server it just allows me to set the secure attribute for the JSESSIONID cookie but not for the others. Here are my conclusions from my appscan results: testcookie : This cookie seems to be generated in the worklight.js file. According to the appscan,

How to implement OAUTH 2.0 in IBM Worklight 6.0

你离开我真会死。 提交于 2019-12-05 17:25:43
In my app I have implemented Login module auth security by implementing security realms. But i am thinking of implementing a OAUTH2.0 authentication where user will be authenticated once I will get a token and re-validate than on app starts. So please one guide what are the prerequisites to implement this. Can I achieve this by creating a custom authentication module ? Any guide sample code will be really helpful. Joshua Alger There is an article that was published that shows how to use OAuth with inappbrowser and Worklgiht using LinkedIn found at the following location: http://www.ibm.com

IBM Worklight - Error while validating project during deployment

我们两清 提交于 2019-12-04 06:01:01
问题 I have created an application using IBM worklight and i am using customAuthenticator for login process I am getting following validation error while deploying application Security test DummyAdapter-securityTest must include user and device realms for AuthDemo:iphone:1.0:api. [project module_23_1_CustomLoginModule] 回答1: You need to re-read the entire Getting Started section about Authentication and Security. There is more reading material here and here. From the error I am thinking you have

Worklight Online + Offline Authentication

谁说胖子不能爱 提交于 2019-12-03 20:28:35
I'm trying to achieve the following through Worklight. My app has two sets of features. One set of features can be accessed only when the app is connected to the server and the user is authenticated. Another set of features can be accessed offline but they require data from an encrypted JSONStore. I have a JSONStore on the client device which is initialized using a password. Therefore, the data in the store will be encrypted. Also, this JSONStore is synced to a database on the server through an adapter. I have also setup another adapter which authenticates the user by using another set of

IBM Worklight - How to use Google authentication in a Hybrid application?

允我心安 提交于 2019-12-02 19:04:23
问题 I am facing difficulties implementing social authentication (using Google, Facebook) in a Worklight app with the Android and iOS environments. I am trying to use oauth. The following are requirements: var OAUTHURL = 'https://accounts.google.com/o/oauth2/auth?'; var VALIDURL = 'https://www.googleapis.com/oauth2/v1/tokeninfo?access_token='; var SCOPE = 'https://www.googleapis.com/auth/userinfo.profile https://www.googleapis.com/auth/userinfo.email'; var CLIENTID = '97612631714.apps

IBM Worklight - Error while validating project during deployment

狂风中的少年 提交于 2019-12-02 08:17:59
I have created an application using IBM worklight and i am using customAuthenticator for login process I am getting following validation error while deploying application Security test DummyAdapter-securityTest must include user and device realms for AuthDemo:iphone:1.0:api. [project module_23_1_CustomLoginModule] You need to re-read the entire Getting Started section about Authentication and Security . There is more reading material here and here . From the error I am thinking you have added a securityTest="DummyAdapter-securityTest" attribute to your iphone element in application-descriptor

Worklight Authenticity

怎甘沉沦 提交于 2019-12-02 00:05:35
We are developing a hybrid application on Worklight, and we need to implement the app authenticity. We are using Worklight Enterprise edition 6.2.0.1 with IBM app centre. However, We are seeing the following error on the server log when we launch the app on Android (iOs the same too, but will provide Android log). [1/19/15 15:25:05:388 EST] 00000254 WLNewAuthenti E com.worklight.core.auth.ext.appauth.WLNewAuthenticityScheme isInvalidAndroidParams FWLSE0260E: Missing or empty packageName for android authenticity check, cannot test authenticity. If App Authentication is not set to 'Disabled' or
订阅 worklight-security