Using local user accounts across multiple Mendix apps

0
Hi All,   We have a Mendix application we use in our factory and its been a big success, for the office based staff that have AD accounts we use the SSO module to authenticate but for factory operators who don't have AD accounts we have to have local accounts stored in the Mendix Db.   The business has now decided it wants to expand functionality by creating additional apps whilst allowing the operators to switch between them seamlessly. Currently each of the user accounts are replicated in each application, but the eutopia is to have one central point for local user accounts that can authenticate against other Mendix applications.     As were new to the Mendix journey its not a direction we have any experience in, has anyone acheived this before who can point us in the right direction.
asked
1 answers
0

Hi Stephen, 

I've never made this myself, so I can't speak from experience, but hopefully I can point you in some directions to investigate. 

Ideally, you would have one separate Mendix application serve as the IdP.

There is the OIDC Provider module which from the looks of it allows one central Mendix application to serve as the IdP for your other Mendix applications. I think that would be the optimal solution, so that users can login using SSO for which one central Mendix application is the IdP. 

If the module doesn't work out, you could also build a custom solution which provides a similar functionality, but that would probably require some additional work and would require you to take all security aspects into your own hands. 

Hope that helps!

answered