This topic applies to WebSphere Application Server Liberty V8.5.5.9 and earlier. For the latest Liberty topics, see the WebSphere Application Server Liberty documentation.

Custom user login form

The WebSphere® Application Server OAuth service provider includes a form login page for a user to submit a user name and password.

You can customize your own form login page, but it must be implemented as required in the form-based authentication in the servlet specification. In this form, the action must be j_security_check, and use the j_username input field to get the user name. The action must also use the j_password input field to get the user password. The custom form login page must be provided as an unprotected web resource.

To use the custom form login page for a specific OAuth20 service provider, you must update the service provider definition in the server.xml file. In the provider configuration, you must add the customLoginURL attribute and specify the login page URL as the value.

The following is an example custom login page entry in the provider definition:
<oauthProvider id="OAuthConfigSample"
  customLoginURL="https://acme.com:9043/oath20/login.jsp"
  ...>
Note: Make sure that any files included in your form-login page (such as external style sheets, or images) are unprotected.

Icon that indicates the type of topic Concept topic



Timestamp icon Last updated: Tuesday, 12 December 2017
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=phil&product=was-libcore-mp&topic=cwlp_oauth_customuserlogin
File name: cwlp_oauth_customuserlogin.html