Active session count based authenticator
Welcome to the WSO2 Identity Server (IS) Session Count Based Authenticator.
Active session count based authenticator can be used with WSO2 Identity Server to provide authentication based on the user's current active session count. This enables administrators to enforce active session count limitations. This component requires WSO2 Identity Server Analytics to retrieve user session information. Further this can be used with conditional authentication functions (Repository) to provide customized authentication with conditional authentication.
- Download WSO2 Identity Server and extract it.
- Download WSO2 Identity Server Analytics and extract it.
- Build Active session count based authenticator (using
mvn clean install) - Go to components/org.wso2.carbon.identity.application.authenticator.sessionauth/target
- Copy org.wso2.carbon.identity.application.authenticator.sessionauth-.jar file to <IS_HOME>/repository/components/dropings folder.
- Go to components/org.wso2.carbon.identity.application.authentication-endpoint/target.
- Copy sessioncountauthenticationendpoint.war file to <IS_HOME>/repository/deployment/server/webapps folder
- Configure Identity Server Analytics as described in this document.
- Start the WSO2 Identity Server and WSO2 Identity Server Analytics and use the Active session count based authenticator.
This sample describes how this authenticator can be used to limit user session count with the help of Conditional Authentication Functions. Use the below conditional authentication script.
function onInitialRequest(context) {
executeStep(1, {
onSuccess: function (context) {
var isAllowed = isWithinSessionLimit(context, {"sessionLimit":"2"});
if (isAllowed) {
Log.info('Authentication Successfull ');
}
else {
executeStep(2);
Log.info('Authentication Successfull ');
}
}
});
}
Please note that in here ID 1 is the Basic Authenticator and ID 2 is the sessionCount Authenticator