The default authentication for Pega Platform™ uses a new type of authentication service. You can customize this service, as for any authentication service type.
All authentication services with the basic credentials type include mobile authentication with the OAuth 2.0 protocol and proof key for code exchange (PKCE). You no longer need to create a custom authentication service to support mobile applications.
Operator credentials can be verified using a data page instead of through the Pega Platform database. For example, you can authenticate external customers against a master customer file.
All authentication services provide new options for provisioning operators using a data transform instead of a model operator, to avoid storing unneeded operators in the database.
Basic authentication services also support features that are available to other authentication service types, including:
- Provisioning new operators by using a model operator or data transform
- Preauthentication and postauthentication activities
- Custom property mapping
- Easily selectable security policies
The image below shows the default Platform Authentication service.
Default Platform Authentication service with the basic credentials type
For more information, see Configuring a basic authentication service.