Implement an Authentication solution

ravthan / all-eyes

Automatically exported from code.google.com/p/all-eyes

0 stars 0 forks source link

Implement an Authentication solution #7

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago

Implement an authentication solution for the Android based ae manager 
application.  

One of the professor's question was how are we going to authenticate?  The 
android has what is called an Account Manager which stores your account 
information in a central location but stores it in plaintext (basically however 
you pass it in).

- There is always username/password.
- When I did the project for Guido last time I used OAuth and the Android 
supports that.  We could try to put up an authentication manager. It still uses 
username/password to get the OAuth token. 
- I turn on WS-Security?
- Any suggestions?

Original issue reported on code.google.com by tbrt....@gmail.com on 17 Oct 2012 at 3:10

GoogleCodeExporter commented 8 years ago

Original comment by heyyoul...@gmail.com on 30 Oct 2012 at 1:41

Added labels: Milestone-Prototype

GoogleCodeExporter commented 8 years ago

[deleted comment]

GoogleCodeExporter commented 8 years ago

CThe AeManager uses a keystore and and truststore to establish a secure 
connection to the AeProxy.

Original comment by tbrt....@gmail.com on 14 Nov 2012 at 3:52

Changed state: Started

GoogleCodeExporter commented 8 years ago

The AeManager uses a keystore and and truststore to establish a secure 
connection to the AeProxy.  Working on installing open source OAuth provider 
that we can use to authenticate the user of the android device.

Original comment by tbrt....@gmail.com on 14 Nov 2012 at 3:59

Added labels: Milestone-Release1.0
Removed labels: Milestone-Prototype

GoogleCodeExporter commented 8 years ago

Original comment by ravt...@gmail.com on 21 Nov 2012 at 3:27

Added labels: Priority-High, Security
Removed labels: Priority-Medium

GoogleCodeExporter commented 8 years ago

Completed the Authentication and Authorization of ae messages on the android 
side. Updated the wiki with the authentication message formats.  The 
authentication can perform either username/password which is required for 
working on the android vm or Google OAuth authentication which can be performed 
on real devices.

Procedures to add a user to the proxy:

sudo java -cp ./usr/local/bin/AeProxy.jar org.tbrt.ae.AeAuthentication -add 
username

Procedure to add authorize a user to access the proxy:

sudo java -cp ./usr/local/bin/AeProxy.jar org.tbrt.ae.AeAuthentication -auth 
username

Original comment by tbrt....@gmail.com on 4 Dec 2012 at 7:24

GoogleCodeExporter commented 8 years ago

Original comment by tbrt....@gmail.com on 4 Dec 2012 at 7:25

Changed state: Fixed

GoogleCodeExporter commented 8 years ago

Verified with unit testing

Original comment by tbrt....@gmail.com on 9 Dec 2012 at 9:24

Changed state: Verified