Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Kensho Tsuchihashi (KenshoTsuchihashi)
PEGA
Senior Project Delivery Leader
Pegasystems Inc.
JP
KenshoTsuchihashi Member since 2010 205 posts
PEGA
Posted: Apr 12, 2018
Last activity: Apr 19, 2018
Posted: 12 Apr 2018 4:21 EDT
Last activity: 19 Apr 2018 4:57 EDT
Closed

Where can I find the PRServlet's standard authentication process related rules?

Hi,

We have two Pega URLs for:

1. LDAP authentication (PRWebLDAP1)

2. Standard authentication (PRServlet)

Some operators have check on "Use external authentication" on operator ID and they need to use LDAP URL. Other operators have no check on "Use external authentication" and they use standard PRServlet. We are considering if we can merge the URL into one so operators do not have to switch URL. So requirement is, after user logs in, if the check box is on, run Code-Security.AuthenticateLDAP (out-of-the-box activity) otherwise run standard matching process (check if entered password is the same as the one in PRPC database (PR_OPERATOR table's password). If there is any out-of-the-box process API to match credentials in Pega database, I can call it in the AuthenticationLDAP activity using conditioning. Where can I find one?

Thanks,

To see attachments, please log in.
Low-Code App Development

Posted: 6 years ago
Posted: 18 Apr 2018 2:09 EDT
Adithya Kurmachalam (Adithya1)
Pegasystems Inc.
Solutions Engineer
Pegasystems Inc.
IN

Hi,

It is not possible to use same url or same servlet to trigger different authentication mechanisms based on the checkbox(Use external authentication) configured in the operator rule as different authentication mechanisms will trigger based on the servlet url pattern and as part of each authentication mechanism, the operator rule is checked to know whether operator is configured for external or Pega basic authentication after one of the mechanism is selected based on servlet url pattern.

 

You can trace the requestor corresponding to login page( when you are in login page) to check what are all the rules it executes during login.

 

Thank you,

Adithya

To see attachments, please log in.
Posted: 6 years ago
Posted: 18 Apr 2018 20:31 EDT
Kensho Tsuchihashi (KenshoTsuchihashi)
PEGA
Senior Project Delivery Leader
Pegasystems Inc.
JP

Hi Adithya,

1. My intent was, I don't need to use two Servlets. I only use PRCustom for LDAP and this is the default. In this authentication, PRPC runs authentication service which triggers an activity where I can build any authentication logic. So, before this actual authentication logic is reached, I can also check if operator has "Use external operator authentication" checkbox on or not. If it is off, run all authentication rules that are used in Standard log in. Is that feasible?

2. I traced but I am unable to find any authentication related rules. To me, Tracer seems to be tracing all rules after authentication. Is that so? Or can you please tell me which exact rules are for standard authentication?

Thanks,

To see attachments, please log in.
Posted: 6 years ago
Posted: 19 Apr 2018 4:57 EDT
Adithya Kurmachalam (Adithya1)
Pegasystems Inc.
Solutions Engineer
Pegasystems Inc.
IN

Hi,

 

I am not sure if that is feasible as the starting point seems to be from background engine code.

Someone from Product Engineering team may be able to answer this.

 

Thank you,

Adithya

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice