Authentication of users¶

Sequel security service offers different mechanism or authentication providers to authenticate a user:

• Built-in password based authentication.
• Windows Authentication.
• Federation gateway. One of the features provided by Duende IdentityServer is the federation gateway; allowing our security service to act as a gateway to other external identity providers:
  • Azure AD
  • ISO ClaimSearch
  • Okta

At least, one authentication provider must be configured; being possible to configure more than one at the same time.

Configuring authentication providers¶

Authentication providers are configured at appsettings.json file at LoginSettings.IdentityProvidersSettings. Each provider has specific settings but all of them has an Enabled property to activate or deactivate it.

How authentication provider is selected¶

When just one authentication mechanism is configured this is used directly without asking to the user. If the selected method is:

• Built-in, then the login screen is displayed.
• Others, then the challenge/redirection to this authentication provider is started.

If there are multiple providers configured then the user is asked to select and start the authentication: