SOAP Authentication Wrappers
  • 21 Jan 2025
  • 2 Minutes à lire
  • Sombre
    Lumière
  • PDF

SOAP Authentication Wrappers

  • Sombre
    Lumière
  • PDF

The content is currently unavailable in French. You are viewing the default English version.
Résumé de l’article

The Authentication component is used to validate one-time password (OTP) values. This component implements a system similar to load balancing, which means that two SOAP servers can be defined in a configuration. If the primary server fails to respond, an attempt will be made with the second one. If the second one fails to respond too, the request is dismissed and the relevant error code is returned.

The AuthenticationHandler maps all commands defined in the OneSpan Authentication Server authentication WSDL file.

All methods return high-level objects that wrap the server’s response. All those objects are subclasses of the IdentikeyResponse, which defines methods common to all objects. For a list of different methods defined by this class, see Overview of SOAP wrappers.

The authentication commands return an AuthenticationCommandResponse object that wraps the server’s response.

1-step Challenge/Response

There is no default policy for the 1-step Challenge/Response option. This means that a policy must be edited to successfully allow this option to work.

The SDK Authentication client uses the Authentication Sample Client client component, which is linked to the Identikey Local Authentication policy by default. The Identikey Local Authentication policy must be configured accordingly to allow 1-step Challenge/Response.

To configure OneSpan Authentication Server to allow 1-step Challenge/Response

  1. Launch the Administration Web Interface.
  2. Navigate to the Policies tab and list the policies.
  3. Select the IDENTIKEY Local Authentication policy.
  4. In the Challenge tab, set 1-Step Challenge/Response to Yes – Server Challenge.
  5. In the DP Control Parameters tab, set Challenge Check Mode to 0 – No Challenge Check.

SOAP authentication wrapper code samples for .NET: Response-only

The following code sample (from responseOnly.aspx, the webpage for the Authentication Response Only page) shows what you need to include in your webpage if you want to incorporate OneSpan Authentication Server authentication functionality.

<%@ Page Language="C#" AutoEventWireup="true" CodeBehind="responseOnly.aspx.cs" Inherits="IdentikeySampleSite.authGroup.responseOnly" %>
<asp:Content ID="ResponseOnly" ContentPlaceHolderID="MainContentHolder" runat="server">
<%
  // Credentials have been provided, now perform the request
  String userID = Request["CREDFLD_USERID"];
  String domain = Request["CREDFLD_DOMAIN"];
  String pin = Request["CREDFLD_CURRENT_PIN"];
  String dpResponse = Request["CREDFLD_DP_RESPONSE"];
  String password = Request["CREDFLD_STATIC_PASSWORD"];
  Boolean rhc = (Boolean)"on".Equals(Request["CREDFLD_REQUEST_HOST_CODE"]);

  // Execute the command
  results = executeAuthUser(domain, userID, pin, dpResponse, password, rhc);
  if (results.getReturnCode() == 0)
  {
%>
    <p>OTP verification succeeded</p>
<%
  }
%>
</asp:Content>

The following code sample comes from the responseOnly.asp.cx file. This is the compile executable code used by the aforementioned responseOnly.aspx file to execute the server commands.

using IdentikeyWrapper.vasco.identikey.model;
using IdentikeyWrapper.vasco.identikey.authentication;

namespace IdentikeySampleSite.authGroup
{
  public partial class responseOnly : System.Web.UI.Page
  {
      protected AuthenticationCommandResponse results;

      protected AuthenticationCommandResponse executeAuthUser(String domain, String userID, String pin, String dpResponse, String password, Boolean reqHostCode)
      {
          AuthenticationHandler handler = new AuthenticationHandler();
          CredentialsBase.RequestHostCode rhc = reqHostCode ? CredentialsBase.RequestHostCode.Required : CredentialsBase.RequestHostCode.Optional;
          return handler.authUser(domain, userID, pin, dpResponse, password, rhc);
      }
   }
}

If you want to include other functionality, go to the sdk_install_dir/ASP.Net/src/IdentikeyAuthSampleSite/authentication folder and use the code from the files in there. All the file names identify the function of the code in the file.


Cet article vous a-t-il été utile ?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.
ESC

Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle