We are considering adobe DPS to publish our digital magazines. Like many other publication companies we also have existing "print" subscribers.
We have an authentication solution that uses WS-federation. This works by browsing to our login website. After the user is authenticated, we POST back a JWT security token to the calling application. It is important to know that we want to show user interface to log in. Some of our customers login through their Facebook/Twitter account so we don't have any passwords for them. Our login website also makes it possible to evolve all of our applications and websites in a consistent manner. For us it is really important that we don't create extra credentials for our users. We want them to authenticate the same way everywhere. (the login website also deals with changing "terms and conditions" and will automatically enabled future external identity providers (like Google and Microsoft - it also allows us to force people to update their profile if we don't have a complete profile etc...).
From the DPS entitlement solution we see that the only possibility that is foreseen out of the box is to authenticate users through a username/password credentials. Is it possible to replace this mechanism with an "open embedded browser/capture token" scenario ? If so, how can this be done ? (I guess the other entitlement operations are OK for us)
Many thanks in advance.