feat: Add the possibitily to not authorize the login against the exte…

…rnal store - EXO-67969 - Meeds-io/meeds#1417 In some case, when the platform is configured with an external user store AND SSO like OIDC, the IDP have security rules for the login like MFA. But, as the user is present in the external store, he can logs with the eXo login form, bypassing security rules This commit add a property to refused the connection for a user in the external store by the exo login form. He have to use the IDP login form
Meeds-io · Dec 6, 2023 · 710589e · 710589e
1 parent f27e428
commit 710589e
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/...ain/java/org/exoplatform/services/organization/externalstore/IDMExternalStoreService.java b/...ain/java/org/exoplatform/services/organization/externalstore/IDMExternalStoreService.java
@@ -56,10 +56,12 @@ public interface IDMExternalStoreService {
 
   public static final String            USER_PROFILE_ADDED_FROM_EXTERNAL_STORE  = "exo.idm.externalStore.user.profile.new";
 
+  public static final String             AUTHORIZE_LOGIN_PARAM = "exo.idm.externalStore.authorizelogin";
+
   /**
    * Authenticates user using external store only
    * 
-   * @param username
+   * @param usernamece
    * @param password
    * @return
    * @throws Exception