I'm looking to potentially use the perspective barcode scanning feature with an iPad camera. This works fine, but what I would like to do is potentially authenticate the user via this method. Each operator has a barcode on their badge which they use to clock in/ clock out with Kronos. I have read access to the Kronos database and would like to authenticate the user by having them scan their barcode with the iPad camera and then authenicate by performing a simple query of the Kronos DB with the barcode number. Based on what I've read, I don't see an easy or even possible way to achieve this. Does anyone have any thoughts?
You can't delegate actual Perspective auth in this way (it's fundamentally not possible to do some of the things you can in e.g. Vision, because of the way identity providers work).
But there's nothing stopping you from layering your own concept of "authentication" on top - you're just in charge of what it means to your own functionality.
That'll be as secure as having someone (or anyone else) type their name. Isn't a barcode too easily reproduced?
It might be OK for your application but I wouldn't describe it as authentication.
2 Likes
I would agree with that statement. More or less this application just needs to get the user information which I can easily get with the barcode scan. It's currently setup to use AD authentication but I can save operators a bit of time by not having to type in their credentials. More or less was just seeing if I could use it with the built in security but it seems like I can't. I'll just implement my own like recommended above.
Even the longest of passwords shouldn't take more than 2-3 seconds. Don't sacrifice security for time, especially when you only save a few seconds. Just my two pennies..
Security issues aside...
Save the data.text of the barcode to a variable, use that to query the Kronos DB to get the user ID. Save that as a session.prop then do with it as you will.