compared with
Current by Erik Drolshammer
on Mar 14, 2018 14:35.

Key
This line was removed.
This word was removed. This word was added.
This line was added.

Changes (28)

View Page History
Whydah is a Single Sign On enabler consisting of four main components with clearly defined responsibilities.
!whydah-productsheet.png!

{tip}
The fast and flexible IAM and SSO way for the Mobile, Cloud and WEB 2.0 world...
{tip}

{section}
{column:width=650%}
Whydah is a Identity Provider and Single Sign On enabler consisting of five main components with clearly defined responsibilities.

Key benefits
* Leverage IAM/SSO to reduse time&cost on custom solutions
* SSO and IAM the _agile way_
* Transition from one userdatabase per system to the integrated identidy 8of the cloud)
* _Least expensive way to better user experiences_


Some important [Features]:
* Provide [RBAC|IAM:RBAC] for any application that you connect to it.
* User Authentication by 3rd party IdP's (LDAP, Facebook, NetIQ, AD)
* User storage
* User admmin GUI
* Flexible role setup with users, roles, properties.
* Highly scalable
* High Availability ready.

We will gather documentation about whydah in this space and restore [the IAM space|IAM:home] as a knowledge management space about IAM.
h3. *tl;dr*

h3. Whydah modules
{children:page=Modules }
{code}
// Execute a POST to authenticate my application
String appToken = Request.Post("https://sso.whydah.net/sso/logon")
.bodyForm(Form.form().add("applicationcredential", myAppCredential).build())
.execute().returnContent().asBytes();

-----
// Find appTokenID from applicationToken
String appTokenID = $(appToken).xpath("/applicationtoken/params/applicationtokenID[1]");

// Execute a POST to SecurityTokenService with userticket to get usertoken
String usertoken = Request.Post("https://sso.whydah.net/sso/user/"+appTokenID+"/get_usertoken_by_userticket/")
.bodyForm(Form.form().add("apptoken", appToken)
.add("userticket", userTicket).build())
.execute().returnContent().asBytes();

// That's all you need to get a full user database, IAM/SSO, Facebook/OAUTH support ++
boolean hasEmployeeRoleInMyApp = $(usertoken).xpath("/usertoken/application[@ID="+myAppId+"]/role[@name=\"Employee\"");
{code}
(Example using Apache HTTP Components Fluent API and jOOX Fluent API)

*Whydah IAM integration int three simple steps*
!https://wiki.cantara.no/download/attachments/37388812/Integration+-+simple+standalone.png!

{column}
{column:width=52%}
{column}
{column:width=35%} {column:width=48%}
h6. Navigate space
h3. Getting Started
{pagetreesearch}
* [Whydah Product Sheet|http://www.getwhydah.com]
* [Whydah Key Features]
* [Getting Started - using Whydah SSO/IAM for your application|Integrating with Whydah]
* [Integrating with Whydah]
{pagetree}
h3. Key benefits
* Leverage IAM/SSO to reduse time&cost on custom solutions
* SSO and IAM the _agile way_
* Moderrn and flexible secure microservices architecture for high scalability and availability
* Transition from one userdatabase per system to the integrated identity of the cloud)
* _Least expensive way to better user experiences_
* system threat-level support built-in (read: DEFCON)
* Collaborative application authentication


h3. Some important [Whydah Key Features]
* User Authentication by 3rd party IdP's (LDAP, Facebook, NetIQ Access Manager, AD)
* High scaleability (millions of requests/user sessions/users)
* High Availability support. (2-100 cluster members)
* Support various complex QoS configurations
* User storage
* UserAdministration GUI
* Flexible role setup with users, applications, on behalf of or using agreement/contrect, roles, properties.
* Provide SSO and IAM for any application.

h3. Whydah modules
{children:page=Whydah Modules }
{column}
{section}

{tip}
Whydah - *because you should never have to develop another user database ever again*
{tip}

-----
h3. Architectural overview

!Whydah infrastructure.png|width=1100!
!https://wiki.cantara.no/download/attachments/37388694/Whydah+infrastructure.png|width=1100!

Note, [Defense in depth|https://www.owasp.org/index.php/Defense_in_depth] strategy.


If you want to learn more about Whydah, see documentation in this space or visit [http://www.getwhydah.com]


h6. Contributing
* [Getting Started - contributing to Whydah development|Contributing to Whydah - demo and test installation]