Hi Melodias, Both of your use cases needs some level of customization and advanced analytics. Case 1: What you can do is to write custom Authenticator, (see [1]) to evaluate the logic given. You can use WSO2 DAS [2] to perform analysis about fraudulent activities and keep a table updated about Geo-Location and time based information as your use case requires. Then the custom authenticator can evaluate the analysis table to decide sending an email as your requirement.
Case 2: Also can be done as same as case 1, with a custom authenticator. The difference here is that you may need to write some UI components to manage the trusted devices. Current IS releases has no inbuilt capability to identify the devices. However you may find WSO2 IoT Server [3] better suited in managing and identifying the trusted device. [1] http://wso2.com/library/articles/2017/04/writing-a- custom-inbound-authenticator-for-wso2-identity-server/ [2] http://wso2.com/smart-analytics [3] http://wso2.com/iot Cheers, Ruwan On Mon, May 22, 2017 at 3:55 PM, Melodias <osbtestmail...@gmail.com> wrote: > Hi > I would like add extra security using IS 5.3.0. > > My first scenario is: > I'm in London and I'm login to my webApp using SSO IS 5.3.0. After 30 > minutes someone login to my account from Beijing. It is not possible that > it > was me, because 30 minutes before I was in London. Can IS send me an email, > that someone login to my account from Beijing? > > My second scenario is: > to have trusted device. In first login I add my pc to trusted device. To > add > device, IS will send on my mobile phone message with code i have to write, > to add trusted device. When I login to my account from other device, then > IS > send me an email with message that someone loggin to my account from > unknown > device, and to login I must have new code to add new device. > > It is possible to do this scenarios using IS? > > my regards > > > > -- > View this message in context: http://wso2-oxygen-tank.10903. > n7.nabble.com/Security-using-IS-5-3-0-tp149117.html > Sent from the WSO2 Development mailing list archive at Nabble.com. > _______________________________________________ > Dev mailing list > Dev@wso2.org > http://wso2.org/cgi-bin/mailman/listinfo/dev > -- *Ruwan Abeykoon* *Associate Director/Architect**,* *WSO2, Inc. http://wso2.com <https://wso2.com/signature> * *lean.enterprise.middleware.*
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
