Custom OAuth2 Authentication Service
Hi,
We are looking to authenticate Pega users via an external system (Azure B2C). The external system exposes a login REST API that takes credential parameters and returns an OAuth2.0 token if authentication is successful.
I'm looking at using the OAuthAuthentication authentication service option. Within this service, there is an activity called pzOAuth2AuthenticationActivity. From what I can see, there is no step which makes a call out to the external system for authentication.
Has anyone implemented a similar authentication pattern? Do I need to add a REST connect step to the activity to call my login REST API or am I missing something?
Thanks in advance.
Bill
**Moderation Team has archived post**
This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.
Pegasystems Inc.
US
Hi Bill, are these pega end users browser based users?
please correct me if my understanding is wrong,
when an end user accesses the pega application url via browser, user is presented with the login screen from pega application. once the user enters the credentials, those details will be taken by pega and posted to external system(Azure B2C). external system authenticates the user & sends back the token to pega. Pega then validates the token and allows the end user to login?
Atesis Pty Ltd
AU
Thanks for the response Gopi.
Yes, these will be browser based users and the sequence of events you have described is what I am trying to achieve.
Pegasystems Inc.
US
ok. Since there is no out of the box example, may be you could 'SaveAs' OOTB authentication activity rule to your application rule set, refer the newly created new in the authentication service rule. I don't see a reason why your approach of creating an explicit rest connector from the authentication activity would not work.