Authenticating users in Liberty

Authenticating users in Liberty

The Liberty server uses a user registry to authenticate a user and retrieve information about users and groups to perform security-related operations, including authentication and authorization.
To learn about how authentication works in Liberty, see Authentication.
The authentication tasks we can configure might vary depending on your requirements. Unless we have used the quickStartSecurity element that can configure only one user, we have to configure the user registry at the least. We do not have to configure the values for JAAS, authentication Cache and SSO tasks unless we want to change the default values. Configure TAI configuration only when we have an implementation of TAI interface to handle authentication.

Configure a user registry in Liberty

Configure JSON Web Token in Liberty

Configure the authentication cache in Liberty

Configure a JAAS custom login module for Liberty

Configure a Java Authentication SPI for Containers (JASPIC) User Feature

Configure LTPA in Liberty

OpenID

OpenID Connect

Configure an OpenID Relying Party in Liberty

Configure social login in Liberty

Configure SPNEGO authentication in Liberty

Customizing SSO configuration using LTPA cookies in Liberty

Configure RunAs authentication in Liberty

Configure TAI for Liberty

Configure a custom form login page

Configure SAML Web Browser SSO in Liberty

Configure SAML Web Inbound Propagation in Liberty

Use OpenID Connect

Authentication Filters

Parent topic: Secure Liberty and its applications

Related tasks

Configure security for z/OS Connect
Set up the System Authorization Facility (SAF) unauthenticated user