Use cockpit with custom IdentityService

Matthias_Dietl · 2019-01-18 13:06:10 UTC

Hey guys,

we’re using Camunda in a Spring Application with a custom identity service, that means we don’t use the Camunda tables for storing user information. This works very well.

Now we would like to add Cockpit and are not quite sure how to go about this regarding authentication. As far as I can see, the standalone web application provides authentication over the Camunda tables or over LDAP via a plugin.

Is there any way we can use our custom identity service in there? Maybe via custom plugin or custom restcall, but then we would have to build cockpit ourselves, right? Any other ideas?

nikola.koevski · 2019-01-21 08:50:41 UTC

Hi @Matthias_Dietl,

There is also the option to use Container-based Authentication . Do you think this would work for you?

Cheers,
Nikola

Matthias_Dietl · 2019-01-21 10:26:24 UTC

Hey @nikola.koevski,

thanks, I did not know about the support for container authentication, but I do not think this would be a usable option for us. I guess the most efficient would be to really build cockpit ourselves if there’s no native way of using a custom IdentityService.

nikola.koevski · 2019-01-22 08:32:24 UTC

Hey @Matthias_Dietl,

You don’t have to build Cockpit yourselves, you can just implement another plugin that would work with your custom identity service. You can see how the ldap plugin integrates with the engine here.

Best,
Nikola

Matthias_Dietl · 2019-01-29 15:23:32 UTC

That looks promising, I’ll give it a try.

Thank you so far!

Webcyberrob · 2019-01-29 20:53:23 UTC

Hi Matthias,

I wrote a custom plugin to integrate to OKTA. It was quite straight forward, the most challenging item was mapping the search functions to the native underlying platform (eg OKTA)

regards

Rob