Mobile User Authentication with On-Premise LDAP Server / Social - - PowerPoint PPT Presentation
Mobile User Authentication with On-Premise LDAP Server / Social - - PowerPoint PPT Presentation
Mobile User Authentication with On-Premise LDAP Server / Social Login using IBM Mobile Foundation My My W Ward wh what is t is th the a app a about Ser Servi vices ces used used IBM Mobile Foundation V8 {API} Mo
‘My ‘My W Ward’ ’ – wh what is t is th the a app a about
Ser Servi vices ces used used
IBM Mobile Foundation V8
Business Teams Development IT Operations Teams
Mo Mobile Pr Projects Of Offline Sync wi with on De Device data Ri Rich Push no notificat cation Ma Manage Feature Re Release using Live Up Update AI AI Model Distribution Ad Adapters for Co Cognitive services Mo Mobile An Analytics with Cr Crash and Al Alert Ap App Lifecycle Ma Management Ba Backe kend logic and ent enter erprise e in integratio ion Ad Adapter auto ge generation
- n f
for
- r a
any Ba Backe kend RE REST and and Cloud ud Fu Function
- ns A
APIs Is
{API}
Mo Mobile optimized RE REST APIs Co Comprehensive Se Security
Mo Mobile Fo Found undation n Dev an and Admin CLIs Is St Starter Pr Projects, Re Ready Apps, Sa Samp mples
Flexible Hosting Choice
Di Digital App Builder
SD SDKs Ks
MF MF Clie lient SDK SDKs
App lifecycle, crash analytics, security, push, app authenticity events
/api
Om Omni-ch chan annel el API End points Se Secured Mobile App App Backend
§ Ap App Au Authenticity § Ap App Checks ksum § De Devi vice white telist/ t/blackl klist § Certi tificate te pinning ch check ecks § Ve Versio ion enforce § Authoriza zation Se Server
RE REST ST APIs
§ RE REST anno nnotated Ja Java § Ja Javascript § De Define sc scopes s an and polici cies es § Au Auto-Gen Gen fr framework
Adapters rs
- HT
HTTP
- Cl
Cloudant
- Cogniti
tive se servi rvices
- Cogniti
tive NLU & Conversati tion
- Op
Open Whisk Rule Rules
Push ush Ana nalyt ytics Offl Offline Sync Consol Console
Di Direct & Li LiveU eUpdate ate
Platform Services On On-pr prem Se Serve vers
Ap App Distribution
Toolin Tooling
- Ric
Rich h CLI LI
- RM
RMAD*
- St
Standalone server
- Sa
Samples, SD SDKs
PLAN DEV BUILD TEST DEPLOY PROD
Mobile Foundation V8
- n
- n
Cl Cloud
- ud
Backend
API API Gateway (Mi Microservice la layer)
/api
We Web Server to host Web artif ifacts
/api /api
IBM Mobile Foundation Architecture
CI/CD DevOps
Ba Base pattern – Hyb Hybrid id m mobile ap ile app wit with clo cloud n nat ative b ive back acken end Code - https://github.com/IBM/Ionic-Mobile Foundation-App/
Mo Mobi bile User Au Auth thenti ticati tion pa patte ttern – bu built t on ba base pa patte ttern
Components setup
- 1. Create Cloudant database and populate it with sample data
- 2. Create IBM Cloud Object Storage service and populate it with sample data
- 3. Setup LDAP server and Secure Gateway Client
- 4. Register Android App with Google and Facebook for Social Login
Architecture flow diagram
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter
2
Social Login security check
Mobile Foundation SDK
1 facebooklogin() this.fb.login(['public_profile', 'user_friends', 'email']) .then(res => { if(res.status === "connected") { …. var accessToken = res.authResponse.accessToken; … 3
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter
4
Social Login security check
Mobile Foundation SDK
WLAuthorizationManager.login(this.securityCheckNameSocial, credentials)
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter
5
Social Login security check
Mobile Foundation SDK
Validate the accesstoken HTTPS GET https://graph.facebook.com/
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter
6
Social Login security check
Mobile Foundation SDK
Receive the authenticated user information from the securitycheck
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter
7
Social Login security check
Mobile Foundation SDK @GET @OAuthSecurity(scope = "socialLogin") @Path("/socialLogin") @Produces("application/json") public Response getAllEntries_sl() throws Exception { … }
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter
8
Social Login security check
Mobile Foundation SDK @GET @OAuthSecurity(scope = "socialLogin") @Path("/socialLogin/objectStorage") @Produces("application/json") public Response getObjectStorageAccess_sl() throws Exception { … }
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter
9
Mobile Foundation SDK Mobile app initializes image-caching plugin Uses the authorization token to fetch the images from Object storage. Mobile app displays the data obtained from MFP adapter as a list of items. The image caching plugin running on the mobile app downloads and caches images from Cloud Object Storage.
10
Social Login security check
User Maps
Ionic application SDK Sign-in service
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
Resource Adapter Social Login security check
2 3 4 5 6 7 8 9 10
Mobile Foundation SDK
User Maps
Ionic application Mobile Foundation SDK
MOBILE FOUNDATION OBJECT STORAGE CLOUDANT
Provider Cloud
LDAP security check Resource Adapter
1
Customer Data center
SECURE GATEWAY
Secure Gateway Client Enterprise LDAP Server
2 4 3 5 6 7 8 login() WLAuthorizationManager.login(this.securityCheckName, {'username':username, 'password':password}) <property name="ldapURL" defaultValue="ldap://caplons.integration.ibmcloud.com:11111" displayName="The LDAP Server URL"/>
Demo
1.
DevOps with Mobile Foundation
2.
In App Feedback for obtaining direct feedback from end users
3.
PWA Support
4.
React Native SDK
5.
Security Capabilities
6.
Offline Sync
7.
Low code App Development
- Other Useful Links
v
Industry Ready Apps
v
Mobile Blogs
v
Dev Center
v
Stack Overflow
v
Slack
v
Get Help
Resources - Links
- 1. Develop a hybrid mobile app with a cloud-native back end
https://developer.ibm.com/patterns/develop-hybrid-mobile-app-with-cloud-native-back-end/ https://github.com/IBM/Ionic-MFP-App/
- 2. Secure mobile offline synchronization
https://developer.ibm.com/patterns/secure-offline-synchronization-ibm-mobile-foundation/ https://github.com/IBM/MFP-JSONStore-OfflineSync
- 3. Mobile User Authentication with On-premise LDAP Server/Social Login using Mobile Foundation
https://developer.ibm.com/patterns/implementing-mobile-user-authentication
https://github.com/IBM/MFP-Auth-LDAP/
- 4. Tag-based push notifications using IBM Mobile Foundation