View Source

!whydah-productsheet.png!

{section}
{column:width=50%}
Whydah is a Identity Provider and Single Sign On enabler consisting of five main components with clearly defined responsibilities.




h3. *tl;dr*

{code}
// Execute a POST to authenticate my application
String appToken = Request.Post("https://sso.whydah.net/sso/logon")
.bodyForm(Form.form().add("applicationcredential", myAppCredential).build())
.execute().returnContent().asBytes();

// Find appTokenID from applicationToken
String appTokenID = $(appToken).xpath("/applicationtoken/params/applicationtokenID[1]");

// Execute a POST to SecurityTokenService with userticket to get usertoken
String usertoken = Request.Post("https://sso.whydah.net/sso/user/"+appTokenID+"/get_usertoken_by_userticket/")
.bodyForm(Form.form().add("apptoken", appToken)
.add("userticket", userTicket).build())
.execute().returnContent().asBytes();

// That's all you need to get a full user database, IAM/SSO, Facebook/OAUTH support ++
boolean hasEmployeeRoleInMyApp = $(usertoken).xpath("/usertoken/application[@ID="+myAppId+"]/role[@name=\"Employee\"");
{code}
(Example using Apache HTTP Components Fluent API and jOOX Fluent API)

*Whydah IAM integration int three simple steps*
!https://wiki.cantara.no/download/attachments/37388812/Integration+-+simple+standalone.png!

{column}
{column:width=2%}
{column}
{column:width=48%}
h3. Getting Started

* [Whydah Product Sheet|http://www.getwhydah.com]
* [Whydah Key Features]
* [Getting Started - using Whydah SSO/IAM for your application|Integrating with Whydah]
* [Integrating with Whydah]

h3. Key benefits
* Leverage IAM/SSO to reduse time&cost on custom solutions
* SSO and IAM the _agile way_
* Moderrn and flexible secure microservices architecture for high scalability and availability
* Transition from one userdatabase per system to the integrated identity of the cloud)
* _Least expensive way to better user experiences_
* system threat-level support built-in (read: DEFCON)
* Collaborative application authentication


h3. Some important [Whydah Key Features]
* User Authentication by 3rd party IdP's (LDAP, Facebook, NetIQ Access Manager, AD)
* High scaleability (millions of requests/user sessions/users)
* High Availability support. (2-100 cluster members)
* Support various complex QoS configurations
* User storage
* UserAdministration GUI
* Flexible role setup with users, applications, on behalf of or using agreement/contrect, roles, properties.
* Provide SSO and IAM for any application.

h3. Whydah modules
{children:page=Whydah Modules }
{column}
{section}

{tip}
Whydah - *because you should never have to develop another user database ever again*
{tip}

-----
h3. Architectural overview

!https://wiki.cantara.no/download/attachments/37388694/Whydah+infrastructure.png|width=1100!

Note, [Defense in depth|https://www.owasp.org/index.php/Defense_in_depth] strategy.


If you want to learn more about Whydah, see documentation in this space or visit [http://www.getwhydah.com]


h6. Contributing
* [Getting Started - contributing to Whydah development|Contributing to Whydah - demo and test installation]