The architecture allows a developer to implement their own custom authentication solution for external users by providing a "hook" into the existing authentication and authorization infrastructure of the SDEJ.
To "hook" the custom solution into the application the curam.util.security.PublicAccessUser class must be extended, which requires implementing the curam.util.security.ExternalAccessSecurity interface. This class is used during the authentication and authorization process to determine required information relating to the External User. Customizing External User Applications should be consulted for further details.