Authentication Actions allow you to orchestrate what happens after the credentials are verified but before the session is committed. In other words, the user has been validated, but the system hasn't yet produced an authenticated session, which can later be used for Single Sign-On, etc. Actions are executed in the configured order - they can be chained - and depend on each other. They can look up information in databases, prompt the user for more information, or run other activities to ensure proper authentication and a secure login.
The 9.7 release of Curity Identity Server introduces a brand-new workflow UI for authentication actions, making configuration easier than ever. The Curity Identity Server's powerful user journey orchestration engine now features an enhanced interface, providing a full drag-and-drop overview of action pipelines on each authenticator page.
Read more about Authentication ActionsThis is a new way to work with Authentication Actions, where entire flows can be configured with only a few simple steps. Actions are bulding blocks and Action bundles are buildings, they provide recipes for well known patterns, with the full power of customizability.
Read more about Action BundlesCreates a link between a foreign incoming account from the authenticator to the local account.
When a user changes countries, take additional measures.
Duplicate some attribute of the user or the current login context
Directly transform values coming various data sources.
Restrict access before/after a certain time or only during particular hours.
Prevent authentication or SSO from completing based some criteria
If a user travels an impossible distance in a given time span, take extra precautions.
Write small JavaScripts that transform data in the authentication context.
Fetch users' account details from any underlying datasource
Finds all associated links for a local account.
Run additional authenticators depending on the context of a specific user log-in.
Detect the region a user is attempting to login from (e.g., the US, Europe, etc.) and redirect them to the appropriate one.
Take action if a user logs in from a new country.
Create regex-expressions that transforms names and values during the authentication process.
Allows you to remove one (or many) of the incoming attributes at authentication.
Ensure that users accept certain terms and conditions before login
Checks the subject attributes, and if a required attribute is not found, the user will be prompted to fill the missing attributes.
Prompts the user to update their password.
Replace a foreign username/domain used at login with a linked username.
Present the user with a list of choices that they must select during authentication or SSO
Send an email under certain conditions (e.g., when logging in from a new country or computer)
Combine a number of actions and represent them as a single action, allowing you create more complex flows.
Set an attribute for a user or the context in which they're authenticating to a particular value
Create workflows and execute different actions based upon on conditions.
Update the user's account whenever certain criteria are met
In this demo, we give you a comprehensive overview of the Curity Identity Server. What it is and what problems it helps you solve.
Watch Demo