We are trying to authenticate users through ADFS. We have extended the Login window so that users won’t need to enter the username and password. here’s the authentication flow:
The user presses login, we execute a JavaScript.eval("window.location.href = 'some location'"); to open an external webpage while replacing the current window, so that he can authenticate himself to the external system.
After authenticating himself to the external system, we'll receive an access_token through a redirect_url with some params.
We store that access_token and consider the user as authenticated
The user gets redirected to the mainWindow
We're having some issues with #3 and #4.
We are following the same pattern as the IdpAuthProvider, but we're stuck on how to mark a user as authenticated so we can retrieve this user later on from the UserSession in other windows.
Also, we've overriden the doFilter method from CubaAuthProvider, so we can receive the params sent with the redirect_url, but after we receive the token we aren't sure how to redirect the user to the mainWindow from the doFilter method.