Mobile User Authentication with On-Premise LDAP Server / Social - - PowerPoint PPT Presentation

mobile user authentication with on premise ldap server
SMART_READER_LITE
LIVE PREVIEW

Mobile User Authentication with On-Premise LDAP Server / Social - - PowerPoint PPT Presentation

Mobile User Authentication with On-Premise LDAP Server / Social Login using IBM Mobile Foundation My My W Ward wh what is t is th the a app a about Ser Servi vices ces used used IBM Mobile Foundation V8 {API} Mo


slide-1
SLIDE 1

Mobile User Authentication with On-Premise LDAP Server / Social Login using IBM Mobile Foundation

slide-2
SLIDE 2

‘My ‘My W Ward’ ’ – wh what is t is th the a app a about

slide-3
SLIDE 3

Ser Servi vices ces used used

slide-4
SLIDE 4

IBM Mobile Foundation V8

Business Teams Development IT Operations Teams

Mo Mobile Pr Projects Of Offline Sync wi with on De Device data Ri Rich Push no notificat cation Ma Manage Feature Re Release using Live Up Update AI AI Model Distribution Ad Adapters for Co Cognitive services Mo Mobile An Analytics with Cr Crash and Al Alert Ap App Lifecycle Ma Management Ba Backe kend logic and ent enter erprise e in integratio ion Ad Adapter auto ge generation

  • n f

for

  • r a

any Ba Backe kend RE REST and and Cloud ud Fu Function

  • ns A

APIs Is

{API}

Mo Mobile optimized RE REST APIs Co Comprehensive Se Security

Mo Mobile Fo Found undation n Dev an and Admin CLIs Is St Starter Pr Projects, Re Ready Apps, Sa Samp mples

Flexible Hosting Choice

Di Digital App Builder

SD SDKs Ks

slide-5
SLIDE 5

MF MF Clie lient SDK SDKs

App lifecycle, crash analytics, security, push, app authenticity events

/api

Om Omni-ch chan annel el API End points Se Secured Mobile App App Backend

§ Ap App Au Authenticity § Ap App Checks ksum § De Devi vice white telist/ t/blackl klist § Certi tificate te pinning ch check ecks § Ve Versio ion enforce § Authoriza zation Se Server

RE REST ST APIs

§ RE REST anno nnotated Ja Java § Ja Javascript § De Define sc scopes s an and polici cies es § Au Auto-Gen Gen fr framework

Adapters rs

  • HT

HTTP

  • Cl

Cloudant

  • Cogniti

tive se servi rvices

  • Cogniti

tive NLU & Conversati tion

  • Op

Open Whisk Rule Rules

Push ush Ana nalyt ytics Offl Offline Sync Consol Console

Di Direct & Li LiveU eUpdate ate

Platform Services On On-pr prem Se Serve vers

Ap App Distribution

Toolin Tooling

  • Ric

Rich h CLI LI

  • RM

RMAD*

  • St

Standalone server

  • Sa

Samples, SD SDKs

PLAN DEV BUILD TEST DEPLOY PROD

Mobile Foundation V8

  • n
  • n

Cl Cloud

  • ud

Backend

API API Gateway (Mi Microservice la layer)

/api

We Web Server to host Web artif ifacts

/api /api

IBM Mobile Foundation Architecture

CI/CD DevOps

slide-6
SLIDE 6

Ba Base pattern – Hyb Hybrid id m mobile ap ile app wit with clo cloud n nat ative b ive back acken end Code - https://github.com/IBM/Ionic-Mobile Foundation-App/

slide-7
SLIDE 7

Mo Mobi bile User Au Auth thenti ticati tion pa patte ttern – bu built t on ba base pa patte ttern

slide-8
SLIDE 8

Components setup

  • 1. Create Cloudant database and populate it with sample data
  • 2. Create IBM Cloud Object Storage service and populate it with sample data
  • 3. Setup LDAP server and Secure Gateway Client
  • 4. Register Android App with Google and Facebook for Social Login
slide-9
SLIDE 9

Architecture flow diagram

slide-10
SLIDE 10

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter

2

Social Login security check

Mobile Foundation SDK

1 facebooklogin() this.fb.login(['public_profile', 'user_friends', 'email']) .then(res => { if(res.status === "connected") { …. var accessToken = res.authResponse.accessToken; … 3

slide-11
SLIDE 11

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter

4

Social Login security check

Mobile Foundation SDK

WLAuthorizationManager.login(this.securityCheckNameSocial, credentials)

slide-12
SLIDE 12

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter

5

Social Login security check

Mobile Foundation SDK

Validate the accesstoken HTTPS GET https://graph.facebook.com/

slide-13
SLIDE 13

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter

6

Social Login security check

Mobile Foundation SDK

Receive the authenticated user information from the securitycheck

slide-14
SLIDE 14

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter

7

Social Login security check

Mobile Foundation SDK @GET @OAuthSecurity(scope = "socialLogin") @Path("/socialLogin") @Produces("application/json") public Response getAllEntries_sl() throws Exception { … }

slide-15
SLIDE 15

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter

8

Social Login security check

Mobile Foundation SDK @GET @OAuthSecurity(scope = "socialLogin") @Path("/socialLogin/objectStorage") @Produces("application/json") public Response getObjectStorageAccess_sl() throws Exception { … }

slide-16
SLIDE 16

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter

9

Mobile Foundation SDK Mobile app initializes image-caching plugin Uses the authorization token to fetch the images from Object storage. Mobile app displays the data obtained from MFP adapter as a list of items. The image caching plugin running on the mobile app downloads and caches images from Cloud Object Storage.

10

Social Login security check

slide-17
SLIDE 17

User Maps

Ionic application SDK Sign-in service

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

Resource Adapter Social Login security check

2 3 4 5 6 7 8 9 10

Mobile Foundation SDK

slide-18
SLIDE 18

User Maps

Ionic application Mobile Foundation SDK

MOBILE FOUNDATION OBJECT STORAGE CLOUDANT

Provider Cloud

LDAP security check Resource Adapter

1

Customer Data center

SECURE GATEWAY

Secure Gateway Client Enterprise LDAP Server

2 4 3 5 6 7 8 login() WLAuthorizationManager.login(this.securityCheckName, {'username':username, 'password':password}) <property name="ldapURL" defaultValue="ldap://caplons.integration.ibmcloud.com:11111" displayName="The LDAP Server URL"/>

slide-19
SLIDE 19

Demo

slide-20
SLIDE 20

1.

DevOps with Mobile Foundation

2.

In App Feedback for obtaining direct feedback from end users

3.

PWA Support

4.

React Native SDK

5.

Security Capabilities

6.

Offline Sync

7.

Low code App Development

  • Other Useful Links

v

Industry Ready Apps

v

Mobile Blogs

v

Dev Center

v

Stack Overflow

v

Slack

v

Get Help

Resources - Links

slide-21
SLIDE 21
  • 1. Develop a hybrid mobile app with a cloud-native back end

https://developer.ibm.com/patterns/develop-hybrid-mobile-app-with-cloud-native-back-end/ https://github.com/IBM/Ionic-MFP-App/

  • 2. Secure mobile offline synchronization

https://developer.ibm.com/patterns/secure-offline-synchronization-ibm-mobile-foundation/ https://github.com/IBM/MFP-JSONStore-OfflineSync

  • 3. Mobile User Authentication with On-premise LDAP Server/Social Login using Mobile Foundation

https://developer.ibm.com/patterns/implementing-mobile-user-authentication

https://github.com/IBM/MFP-Auth-LDAP/

  • 4. Tag-based push notifications using IBM Mobile Foundation

https://github.com/IBM/tag-based-push-notifications

Resources – Code Patterns