Here is the scenario I was targeting :
at work we are all using (for example) Google apps service
and we all have documents emails everything with Google
authentication, and for example I am writing collaboration demo app
with AFCS to demo to our CEO and co-workers.
so what I want to archive is following :
I tell my co-worker to type his company username and password
inside demo app and hit enter. then I take those credentials,
authenticate with Google apps, make sure he works in our company,
then I retrieve users role, name etc from our back-end service,and
I can also retrieve account secrete key (which I manual entered)
stored somewhere in backed as well corresponding to AFCS account
secret key. .. so far so good, I am armed with users role (which I
can effectively map to AFCS Roles) I also have users name and I
also know that user is legit since authentication have passed, now
with this info in hand, I want to somehow construct AFCS
authentication token so that AFCS server can accept connection for
that user.
since I have generated Account shared key from withing AFCS
control panel, I should assume that its sufficient enough to use
together, with room URL to generate legit authentication token and
pass it to AFCS service and humbly ask to let joe in to that room.
is that possible?
P>S: I understand if I dynamically want to retrieve
account secret key from AFCS service, I have to enter AFCS dev
account surname and password,but I should not need to if I manually
copy that key to our demo apps auth code , should not I?
please correct me if I am missing out some steps.
Regards
Levan.