using sophos utm as auth service in angular app

Hi and Thanks for reaching out to Sophos Community.

Can you give me slightly more about the requirement? Are you concerned with UTM performing authentication for external applications? 

Hi Devesh

no ,i am not concerned 

for now i am using WAF with revers auth for my internal app .( simple html ..https://webmail.falcone.co.il/proj/main.html  protected by WAF => 

redirects to auth form https://webmail.falcone.co.il/proj_main.html_iqhuoijfctysh_form?L3Byb2ovbWFpbi5odG1s )

and now i am trying to create angular app with some pages and i want to prevent going to "home" page untill user will be authenticated

my question is if i can use  sophos utm in my angular project  as identity provider (angular oAuth2 module) ?

maybe  i missunderstanding somthing:)i am very "green" in dev:)

I  need get the information of the user who successfully logged in via reveres authentication 

Can you try creating a site-path routing for "/home" and apply any specific reverse authentication policy to it?

Or Is it that you want the reverse auth to be done through oAuth2 via UTM reverse authentication? :) 

"Or Is it that you want the reverse auth to be done through oAuth2 via UTM reverse authentication? :) " this excatly what i need:)

this is an exaple of AuthConfig file

issuer: '<sophos api url >

this will promft sophos auth form ,and after the user will authenticated get  response 

somthing like this:)

Hi there,

It seems a bit peculiar for reverse proxy in UTM with oAuth2. However, I'll follow up internally for this requirement :)

Hello there, I have checked with the team internally and currently UTM only supports reverseproxy authentication with Form and Basic method. You can integrate compatible authentication servers with it but as of now, Reverseproxy authentication can not be done with oAuth2. 

Thanks,

Hello there, I have checked with the team internally and currently UTM only supports reverseproxy authentication with Form and Basic method. You can integrate compatible authentication servers with it but as of now, Reverseproxy authentication can not be done with oAuth2. 

Thanks,