The process of authentication with UAG includes three key pieces:
UAG presents the login form to the user and collects the credentials
UAG verifies the credentials against the defined authentication repository or repositories, defined on the trunk
UAG stores the credentials and reuses them when single sign on (SSO) is required, such as when launching a published application
To do this, the login form (login.asp
) contains the fields that are to be collected. Once the form is submitted, the validation page (validate.asp) is called, and it verifies the credentials against the selected repository or repositories. The following diagram illustrates the authentication flow and the various functions that UAG will step through when authenticating users against a repository:
The processes that go on afterwards are less relevant here, but will be discussed in the next chapter.
The actual validation is handled by a single file, often referred to as repository.inc...