Authentication | InterSystems Developer Community

Question

Evgenii Ermolaev · Mar 25, 2021

Do I need to enable LDAP authentication for my Cache instance ot use LDAP auntentication in a single CPS application?

Currently, I am working on a CSP application that is supposed to generate reports. Users will have varying access to said reports. To achieve that, I plan to use LDAP (because it's used in other systems where those users already exist). Documentation does not provide enough information, so I'd like a clarification:
Do I need to enable LDAP authentication for the whole Cache instance to use LDAP authentication in a single CSP application in that instance?

#Authentication #Access control #CSP #LDAP #Caché

0 5

0 168

Question

Rob Schoenmakers · Nov 30, 2022

Delegated Users

In our current UCR arhcitecture, we use two installations. We have one machine with Access, Registry and Edges and one machine with the ODS. On the machine with the Registry, I can create a user/clinician. When I log into the management portal with this user, a so-called delegated user is created in the cached users table. So far everything is going well.

When I try the same on the machine with the ODS I get the message : 'ERROR #822: Access Denied' . so no delegated user is created.... Does anyone have any idea where I can find the solution?

#Access control #Authentication #Security #System Administration #InterSystems IRIS #InterSystems IRIS for Health

1 1

0 167

Question

Markus Kogler · Jan 16, 2021

Remember Password feature in ZEN Application

Hi Community,

is there a possibility to implement a "remember password" feature in a ZEN Application?

In the management portal I added a web-application for a ZEN application with password authentification. I created an own login page, and now I want to implement a "remember password" feature (User should not have to login again after the session times out or when the browser window is closed).

#Authentication #CSP #ZEN #Caché

0 2

0 166

Question

Oliver Wilms · Aug 12, 2022

Password requirements

Many password requirements can be enforced using a password validation routine which is available to implement in System Management Portal. But how about this one:

Check that at least 50% of the characters changed from old password to new password.

We need to have access to the old password to check this, currently password validation routine only gets the new password.

#Access control #Authentication #InterSystems IRIS

0 1

0 165

Question

Yuri Marx · Mar 17

Custom %CSP.Login for app /csp/sys

Hi guys, I defined a subclass to %CSP.Login and assigned csp/sys login page to this subclass:

But did not work, I get this error:

And more, the default %CSP.Login continues to be called to login when the user not logged yet
So, how can I do to replace the default %CSP.Login by my subclass?

#Authentication #Security #InterSystems IRIS

0 8

0 164

Question

Oliver Wilms · Jul 10, 2022

I am still working on iris-for-money app: https://github.com/oliverwilms/iris-for-money

Account.csp posts a rest call with _SYSTEM username and the password.

xhttp.open("POST", "/restapi/sql/" + query, true,"_SYSTEM","SYS");
xhttp.send();

/restapi web application has Password Authentication Method enabled.

SYS is the correct password for _SYSTEM user.

I do not understand why I see login failure in Audit database.

#Authentication #CSP #REST API #InterSystems IRIS #Open Exchange

0 1

0 143

Question

Stephan Gertsobbe · May 5, 2020

Implementing a Service Provider to consume and fullfill service requests with a shibboleth environment

I'm wondering if anybody has done an implementation of the https://www.shibboleth.net/products/service-provider/ interface in Caché / IRIS to have a application running in Caché / IRIS be acception the shibboleth tokens and data as usage credentials.

#Authentication #Access control #Interoperability #InterSystems IRIS

0 1

0 141

Question

Krishnamuthu Ve... · Mar 26, 2021

Access deepsee dashboard via delegated access

Dear Folks,

I have recently studied deepsee and developed few dashboards needed for our web app users. I am trying to embed them in our existing web app which uses angular with delegated user access. I need to embed the native IRIS dashboard into it. ( I can't use Highcharts or any other js tools).

How do I setup the dashboards to work with delegated authentication (Without providing access to management portal or other parts) ? Also should I use the default csp/{Namespace}/_DeepSee.UserPortal.DashboardViewer.zen? or any other web application URL ?

Thanks

#Analytics #Analyzer #Angular #Authentication #Access control #CSP #Dashboards #InterSystems IRIS BI (DeepSee)

0 1

0 139

Question

Paul Riker · Aug 9, 2021

Custom SAML Attributes

How do you determine what namespace to use for your custom SAML attributes? We want to receive patient context (first name, last name, dob, gender, etc.)

OASIS has resource-id but none of the other attributes. urn:oasis:names:tc:xacml:1.0:resource:resource-id

#Authentication #Access control #Security #SOAP #XML #Ensemble #HealthShare

0 2

0 137

Question

Thomas Wuppermann · Sep 23, 2022

Problem with configuration of Kerberos Auth with Docker (or Linux)

While the documentation of configuring authentication with Kerberos for IRIS on Linux servers is sparse, for docker i found no docs at all. Assuming I would be able to adapt the requirements from linux to docker (on linux host) I had no success at all. Has anyone successfully done this?

#Authentication #Docker #InterSystems IRIS

0 0

0 117

Question

Joseph Conaty · Sep 14, 2021

P2P OAUTH Recommended Flow

Hello,

I'm hoping to get some feedback on the OAuth process flow for Payer-to-Payer authorization. It doesn't seem that "Authorization Code Flow" is needed as there will not be a need for a login. I am leaning towards recommending "Client Credentials Flow", but wanted to get some community feedback before making a decision. I prefer to follow what the standard will be if possible. What would you recommend? Thank you in advance for your input.

#API #Authentication #InterSystems IRIS #InterSystems IRIS for Health

0 2

0 117

Question

Jaime Lerga · Feb 8

Implementing basic auth on a rest API

Recently i've been using Restforms2 to create a CRUD API for a project. But it lacks some advanced functionality that we need, so we have created a production with a REST WS which handles those advanced methods. That works great but there's a drawback, it does not have authentication.

I would want to use the same authentication method as Restforms2 which is a basic auth using IRIS users and passwords.

#Authentication #JSON #REST API #Security #InterSystems IRIS

0 4

0 109

Question

Tani Frankel · Feb 8

Configuration (CPF) Merge with Authentication Configuration Sample?

Does anyone happen to have a sample Configuration (CPF) Merge file that includes Action parameters setting up authentication methods (e.g.

#Authentication #Deployment #DevOps #Kubernetes #InterSystems IRIS #InterSystems IRIS for Health

1 2

0 71

Question

Mark OReilly · Oct 25, 2022

Attempt to access a protected Resource- CSP custom page error- have granted role

Getting proctect error on csp custom login page.

It says to add role to CSPSYSTEM i have given role to db (rw i would like to change to R once working). It has not solved issue

#Authentication #CSP #InterSystems IRIS for Health

0 2

0 63

Question

Jeffrey Drumm · Feb 10

IRIS OS Authentication on Ubuntu 20.04/22.04

I've been trying for a while now to get OS authentication working on IRIS running on Ubuntu 20.04 and subsequently 22.04. I have the following authentication methods enabled for %Service_Terminal:

Operating System
Password
Operating System Delegated Authorization

And i have these options selected in Authentication/Web Session Options:

#Authentication #Security #Terminal #Ubuntu #InterSystems IRIS

0 2

0 49

#Authentication

Social networks

InterSystems resources