You can use a third-party access management access system to perform the authentication/authorization instead of the provided filter and still leverage the self-service features of the sample pages. The integration is the easiest if the access management system can provide the name of the authenticated user in the HTTP request header. In this case, steps similar to the Integration with Access Manager can be followed.
If providing the name of the authenticated user in the HTTP request header is not possible, then the following guidelines should be followed to enhance or replace the provided filter:
All self-service pages that require authentication are under the /spe/user/protected folder, all other pages are in the /spe/user folder.
On successful authentication, the Constants.VAR_SUBJECT session attribute must be set to the corresponding user name in Service Provider.