Comments on: ECM Design Patterns http://wordofpie.com/2008/04/06/ecm-design-patterns/ Ponderings on Life, the Universe, and Information Fri, 10 Feb 2012 22:28:54 +0000 hourly 1 http://wordpress.com/ By: Brinda http://wordofpie.com/2008/04/06/ecm-design-patterns/#comment-4802 Fri, 19 Jun 2009 00:13:30 +0000 http://wordofpie.wordpress.com/2008/04/06/ecm-design-patterns/#comment-4802 Hi Pie,

I have been looking for a way to enable “Named Authentication with Shared Authentication (Single Sign-On)”, unfortunately, i do not know of a dfs api that takes in the username and a sso token as its authentication arguments nor do I see a way to fetch the sso token from within form adaptors or bpm event hooks to call an internal login to the external system with the username and the already generated sso token. Do you know of any way?

Also if the above is not possible, I would like to explore the “Named Authentication with Generated Credential Authentication”. I understand from another doc of yours where you spoke about ticketed authentication. Can we do the ticketed authentication through DFS?

]]> By: Alec http://wordofpie.com/2008/04/06/ecm-design-patterns/#comment-3752 Tue, 24 Feb 2009 23:49:10 +0000 http://wordofpie.wordpress.com/2008/04/06/ecm-design-patterns/#comment-3752 I wasn’t able to find any technical documentation explaining how to implement “Generated Credential Authentication” pattern. Could you provide any hints on how to acquire the session as a “superuser” and how to transfer that session to be used by the actual named user? Are there any minimum requirements for the privileges that the “superuser” should have?

Thanks.

Ale

]]> By: Pie http://wordofpie.com/2008/04/06/ecm-design-patterns/#comment-3394 Thu, 31 Jul 2008 16:23:02 +0000 http://wordofpie.wordpress.com/2008/04/06/ecm-design-patterns/#comment-3394 Niall, to my knowledge, there aren’t any other options coming in D6.5.

I do like your approach with dm_checkpassword, though speed may be a concern. The Generated Credential Authentication works well, especially when you properly configure session pooling.

Good luck.

-Pie

]]> By: Niall http://wordofpie.com/2008/04/06/ecm-design-patterns/#comment-3393 Thu, 31 Jul 2008 13:56:41 +0000 http://wordofpie.wordpress.com/2008/04/06/ecm-design-patterns/#comment-3393 I’m feeling adventurous and need to integrate Pega with Documentum using DFS. I quite fancy using Generated Credential Authentication as my pattern. I suppose I could use the same method as the WDK uses for it’s TrustedAuthenticator.

The other approach I was considering was a custom dm_checkpassword with a secure time-boxed key in the password that can be generated by Pega and decrypted and validated by Documentum.

All sounds a bit painful. Are there any better options – I wonder – coming in 6.5 (hopefully released today). I will have a delve later and see.

]]>