ISessionAuthenticationAddin

getName

Retrieves the unique identifier of this authenticator

Parameter

Type

Description

-

-

-

Returns

Type

Description

name

String

Unique identifier of the authenticator

authenticate

Performs authentication to determine if the requester is allowed to access the session

Parameter

Type

Description

session

SessionSource

Context of the user about to be logged-in

step

short

Artifact step

request

ServletRequest

response

ServletResponse

Returns

Type

Description

tokenRequest

TokenRequest

Authentication request token

AnonymousAuthentication

✕

Performs no authentication implemented by the server. Session is anonymous i.e. no user is set

BasicAuthenticationAddin

✕

Performs basic user/password authentication. Retrieves credentials from local eSign credentials file.

DefaultAuthenticationAddin

✓

Performs no authentication implemented by the server. If no authentication mechanism is implemented at the application server, session remains anonymous.

OAuth2SessionAuthenticationAddin

✕

Based on 3 Redirects: 1) Receives request without oauth2 token, and redirects to provider OAuth2 URL (redirects back to this provider after user authenticated); 2) Receives request with oauth2 token, but without 'session' parameter (redirects back to this provider but with 'session' parameter included); 3) Receives request with oauth2 token and 'session' parameter, and validates OAuth2 token (if validation is successful, artifact is displayed);

SAML2SessionAuthenticationAddin

✕

Google

✕

novabase.connect.paperless.esign.oauth2.providers.azure.GoogleOAuth2ProviderAddin

Facebook

✕

novabase.connect.paperless.esign.oauth2.providers.azure.FacebookOAuth2ProviderAddin

Microsoft (Azure)

✕

novabase.connect.paperless.esign.oauth2.providers.azure.AzureOAuth2ProviderAddin

getProviderName

Retrieves the unique identifier of the provider

Parameter

Type

Description

-

-

-

Returns

Type

Description

providerName

String

OAuth2 Provider name

generateAccessToken

generateAccessToken Produces the access token for the provider

Parameter

Type

Description

code

String

Authentication code produced on the authentication phase

callback

String

Callback url

Returns

Type

Description

accessToken

String

Access token for the requested provider

getAuthOps

Retrieves the OAuth2 operations required for this provider

Parameter

Type

Description

request

HttpServletRequest

Returns

Type

Description

oAuth2Operations

OAuth2Operations

A service interface for the OAuth2 flow. This interface allows you to conduct the "OAuth dance" with a service provider on behalf of a user

getAuthScope

Returns the authentication scope i.e. user data access privileges

Parameter

Type

Description

-

-

-

Returns

Type

Description

authenticationScope

String

Authentication scope

validateToken

Tests if the token is still eligible for a proper connection to the provider this method should return true if the token is still usable and should return false otherwise

Parameter

Type

Description

sessionToken

String

OAuth2 session token

Returns

Type

Description

result

boolean

True if the token is still usable

getUserDetails

This method should return a map with pairs of Name,Value containing the user’s data. presently an email or phone number is required as to be used as the user’s unique identifier in eSign’s session

Parameter

Type

Description

sessionToken

String

OAuth2 session token

Returns

Type

Description

userDetails

HashMap<String, String>

User data