OAC Technology
asked on
Using YubiKey with REST API application
Hi,
I'm attempting to use Token-based authentication for some third-party software (Infor) which uses the Mongoose database. I would like to use either YubiKey (preferred) or Google Oauth as my token authentication. In our third-party software we have a check box for "Token Authentication" as well as a "Service URL" which should contain the URL in which the Mongoose database should use to contact the passcode service to obtain the user passcodes. The only support I've been given on this by the database engineers is some example code that I'm not sure where it needs to be placed or how to use it in any way. Here is what they sent me:
I'm not a programmer, so this goes over my head. What would be the best method for using YubiKey or Google OAuth with this software, and how would I go about doing this? Should I be using u2fval from YubiCo as an intermediate server which would validate the Token passcodes? Any help would be greatly appreciated.
Thank you!
I'm attempting to use Token-based authentication for some third-party software (Infor) which uses the Mongoose database. I would like to use either YubiKey (preferred) or Google Oauth as my token authentication. In our third-party software we have a check box for "Token Authentication" as well as a "Service URL" which should contain the URL in which the Mongoose database should use to contact the passcode service to obtain the user passcodes. The only support I've been given on this by the database engineers is some example code that I'm not sure where it needs to be placed or how to use it in any way. Here is what they sent me:
there is a "Token Authentication Support" groupbox in ConfigManager But you or someone from their IT staff will need to write their own serviced that calls Google.
The developer said:
I think you can write your own authentication service using following interface by wrapping google api and then configure using ConfigManager.
// Service Contract Interface
[ServiceContract]
public interface ITokenAuthenticator
{
[OperationContract]
ResponseType AuthenticateUserPost( string userid, string passcode, string provider );
[OperationContract]
bool CheckService( string provider );
}
I'm not a programmer, so this goes over my head. What would be the best method for using YubiKey or Google OAuth with this software, and how would I go about doing this? Should I be using u2fval from YubiCo as an intermediate server which would validate the Token passcodes? Any help would be greatly appreciated.
Thank you!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER