User-password application scripting

You can use the custom user-password application template (described in Adding user password applications) to add a user-password web application to the Centrify App Catalog. This template creates a user-password application profile for a web application that defines how the Privileged Access Service logs an authenticated user on to the web application via an HTML reply form containing user and password information.

Each user-password application profile requires a custom user-password script. The script defines how the Privileged Access Service creates an HTML response to log on for each user’s session with the web application. Each application profile may also provide an optional user map script that determines the user’s application log-on name and password for use in the HTML response. Both scripts are written in JavaScript.

This guide provides these sections:

  • User-password authentication overview is an overview of the user-password authentication process for a user session with a web application. It shows how the Privileged Access Service works with a set of JavaScript objects during the process.
  • Writing a user map script describes how you can write an optional user map script to specify an application user log-on name and password for a user session.
  • Writing a custom user-password script describes how to write the required custom user-password script to define an HTML response that authenticates the user for a user session.
  • Scripting environment reference is a reference section for the objects, methods, and variables in the user map and user-password scripting environment.

To write a custom user-password script, you need to know how to write code in JavaScript. For the vast majority of user-password web applications, the script is simple and you won’t need to do anything more than what’s described in Custom user-password applications. This guide is for the unusual application that might require more.