I'll give this one a shot.
First, let me see if I undersrtand what you are asking. You are saying you configured the login for OpenID. When the user goes to your site and logs in, it redirects correctly, the user authenticates with OpenID and then is redirected back to Liferay -- at which point they are logged in.
You want to intercept the login process, after openID but before Liferay to do a secondary call or something? Is that it?
If I have read this and interpreted it correctly then I think you might want to provice a service override for the class
.. where your class will have a higher service ranking. That will allow your to inject whatever custom logic you need. Sadly the package with this class is internal so you can't extend it unless you modify the scope on the module -- alternatively you can use the source as is as a baseline in your custom service and then make the changes you need.
If I have totally misunderstood your question, try to clarify for me and I'll try again
Also note that other OpenId classes might give you some additional hints that help. For example, in the OpenIdConnectAustoLogin class you can see that ther eis a check for a session attribute. Normally this attribute is set as part of the authentication process (the first time it occurs) so taht in future the auto login can take over.
First, let me see if I undersrtand what you are asking. You are saying you configured the login for OpenID. When the user goes to your site and logs in, it redirects correctly, the user authenticates with OpenID and then is redirected back to Liferay -- at which point they are logged in.
You want to intercept the login process, after openID but before Liferay to do a secondary call or something? Is that it?
If I have read this and interpreted it correctly then I think you might want to provice a service override for the class
com.liferay.login.authentication.openid.web.internal.portlet.action.OpenIdLoginMVCActionCommand.. where your class will have a higher service ranking. That will allow your to inject whatever custom logic you need. Sadly the package with this class is internal so you can't extend it unless you modify the scope on the module -- alternatively you can use the source as is as a baseline in your custom service and then make the changes you need.
If I have totally misunderstood your question, try to clarify for me and I'll try again
Also note that other OpenId classes might give you some additional hints that help. For example, in the OpenIdConnectAustoLogin class you can see that ther eis a check for a session attribute. Normally this attribute is set as part of the authentication process (the first time it occurs) so taht in future the auto login can take over.
...
HttpSession httpSession = request.getSession(false);
if (httpSession == null) {
return null;
}
OpenIdConnectSession openIdConnectSession =
(OpenIdConnectSession)httpSession.getAttribute(
OpenIdConnectWebKeys.OPEN_ID_CONNECT_SESSION);
if (openIdConnectSession == null) {
return null;
}
OpenIdConnectFlowState openIdConnectFlowState =
openIdConnectSession.getOpenIdConnectFlowState();
...
Community
Company
Feedback