On Thu Nov 14 18:44:13 CET 2019 Gesiel Bernardes gesiel at guardiankey.io said:
HI Everyone,
We are trying create a GuardianKey plugin to phpMyAdmin. However, we have
doubts related to the best way to do this and the best point in the code
for this integration.
GuardianKey is a solution to protect systems against authentication
attacks. It uses Artificial Intelligence and analyses the user's behavior,
threat intelligence and psychometrics (or behavioral biometrics). The
protected system (in the concrete case, phpMyAdmin) must send an event via
REST for the GuardianKey on each login attempt. More info at
https://guardiankey.io/services/guardiankey-auth-security-lite/ .
The best way to integrate would be on having a hook in the procedure that
process the user credentials submission in phpMyAdmin (the script that
receives the POST), something such as:
if(POST IN AUTH FORM) {
boolean loginFailed = checkLogin();
GuardianKeyEvent event = createEventForGuardianKey(username,loginFailed);
boolean GuardianKeyValidation = checkGuardianKeyViaREST(event);
if(GuardianKeyValidation){
// Allow access
} else {
// Deny access
}
}
Where is the best place to create this integration? Is there a way to
create a hook for this purpose? Should we create an extension?
Any help is welcome.
Thank you in advance.
Best regards,
Gesiel
I’d be very interested in using GuardianKey with PHPMyAdmin. Does anyone have any suggestions on how Gesiel should go about such an integration?
Thanks,
James.