Nan

Home Members Nan

Learn more about our upcoming Identity Summits

show less show more
Profile picture of Nan

@nan

active 5 years, 2 months ago
Points balance: 164 ♪
Rank: Indie Mixtape
  • Activity
  • Profile
  • Groups 0
  • Forums
  • Personal
  • Mentions
  • Favorites
  • Groups
  • Profile picture of Nan

    Nan replied to the topic OpenAM for Third-Party App Login in the forum Access Management 5 years, 6 months ago

    I think you can use OAuth authentication.
    https://backstage.forgerock.com/docs/openam/13/admin-guide#configure-social-authn

  • Profile picture of Nan

    Nan replied to the topic Can we change the user code length? in the forum Access Management 5 years, 6 months ago

    Thanks for the information.

  • Profile picture of Nan

    Nan started the topic Can we change the user code length? in the forum Access Management 5 years, 6 months ago

    In OAuth2.0 device flow, we want to know if we can change the length of the user code in OpenAM.

    I cannot find that in OpenAM console. And also find some topics related:
    https://bugster.forgerock.org/jira/browse/OPENAM-10087
    https://bugster.forgerock.org/jira/browse/OPENAM-10088

    Thanks,
    Nan

  • Profile picture of Nan

    Nan replied to the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    Your REST calls worked well and much more concise than we currently have. Thank you so much!

  • Profile picture of Nan

    Nan replied to the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    Thank you so much! I will test that later today!

  • Profile picture of Nan

    Nan replied to the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    OK, here is the full traffic recorded via Postman interceptor. You can import the collection file into Postman.

    https://www.dropbox.com/sh/cziw4tvu5x29d6o/AABBiH5Cb3pCNzZzAUOYv-Cia?dl=0

  • Profile picture of Nan

    Nan replied to the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    OK, here is the full traffic recorded via Postman interceptor. You can import the collection file into Postman.

    https://www.dropbox.com/s/g8lnsptji7dfgkv/OpenAM%20Device%20Flow%20full%20traffic.postman_collection.json?dl=0

  • Profile picture of Nan

    Nan replied to the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    We already figured out the postman calls. Thanks for your help. And the in the POST calls, we have to add a JSESSIONID in cookies. The JSESSIONID is captured by Postman interceptor.

  • Profile picture of Nan

    Nan replied to the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    We are able to submit the user code and authenticate the user. However, cannot go through the allow call page. Please advise. Thanks.

    POST /openam/oauth2/nbcacp-sandbox/device/user?user_code=5LLk4ZGW HTTP/1.1
    Host: openam-url
    Content-Type: application/x-www-form-urlencoded
    Cookie: amlbcookie=01;…[Read more]

  • Profile picture of Nan

    Nan replied to the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    Can I send you the postman collections I recorded? Seems I cannot attach files here.

  • Profile picture of Nan

    Nan started the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    I followed the guide https://backstage.forgerock.com/docs/openam/13/dev-guide#rest-api-oauth2-device-flow and able to get the device flow working.

    And I have one question, how can I do all the steps by REST call? Like, enter user code and click allow. The goal we want to achieve is using a frontend to communicate with OpenAM via REST calls. I got…[Read more]

  • Profile picture of Nan

    Nan started the topic Oauth device flow in the forum Access Management 5 years, 6 months ago

    I followed the guide https://backstage.forgerock.com/docs/openam/13/dev-guide#rest-api-oauth2-device-flow and able to get the device flow working.

    And I have one question, how can I do all the steps by REST call? Like, enter user code and click allow. The goal we want to achieve is using a frontend to communicate with OpenAM via REST calls. I got…[Read more]

  • Profile picture of Nan

    Nan replied to the topic OpenIDM and OpenAM authentication in the forum Identity Management 5 years, 6 months ago

    Can you post an example of the rest call? Seems just need to include the iPlanetDirectoryPro in the call. :)

  • Profile picture of Nan

    Nan replied to the topic OpenIDM and OpenAM authentication in the forum Identity Management 5 years, 6 months ago

    Can you post an example of the rest call?

  • Profile picture of Nan

    Nan replied to the topic REST endpoint for self-service registration on OpenIDM? in the forum Identity Management 5 years, 7 months ago

    Thanks, Jake. I did the same thing as you advised. Problem solved!

  • Profile picture of Nan

    Nan started the topic REST endpoint for self-service registration on OpenIDM? in the forum Identity Management 5 years, 7 months ago

    REST endpoint for self-service registration on OpenIDM

    I am looking for the REST endpoint for self-service registration on OpenIDM just like OpenAM, but cannot find more information.

    Can anyone provide any ideas?

    Thanks,
    Nan

  • Profile picture of Nan

    Nan replied to the topic A question about account lockout in the forum Access Management 5 years, 7 months ago

    Thanks Bill. Actually I already read your blog during the troubleshooting. I think I did not enable the account lockout in OpenDJ.

    I have:
    12) last-login-time-format –
    13) lockout-duration 0 s
    14) lockout-failure-count 0

    in default password policy.

    Please…[Read more]

  • Profile picture of Nan

    Nan started the topic A question about account lockout in the forum Access Management 5 years, 7 months ago

    In account lockout settings, there is an option called “Login Failure Lockout Duration”. When set to 0, the account will be inactive and need an admin to change the status. When set to a value, for example, 10, the user will be locked out for 10 mins.

    I did some tests, when “Login Failure Lockout Duration” set to 0, I did see the user status…[Read more]

  • Profile picture of Nan

    Nan replied to the topic Can I edit %link% in email body? in the forum Access Management 5 years, 8 months ago

    Confirmed working. Thanks.

  • Profile picture of Nan

    Nan replied to the topic Social Login Error with external OpenDJ in the forum Access Management 5 years, 8 months ago

    Can you post the logs?

  • Load More
Profile Photo jamiefnelson Profile Photo wadahiro

Search the forums

Leaderboard

The leaderboard is based on our rockin' informal points system, read about it here.

Recent blog posts

  • Using an Authentication Tree Stage to Build a Custom UI with the ForgeRock JavaScript SDK February 26, 2020
  • Identity Workflow with AM using Zeebe and Cloud Functions February 19, 2020
  • IDM: Zero Downtime Upgrade Strategy Using a Blue/Green Deployment January 23, 2020
  • DS: Zero Downtime Upgrade Strategy Using a Blue/Green Deployment January 22, 2020
  • AM and IG: Zero Downtime Upgrade Strategy Using a Blue/Green Deployment January 22, 2020
Visit our blog

Recent Topics

  • Handle exception in Node Patch Object
  • SP Initiated SSO – Unable to do sso or federation
  • Realm level access
  • How can I generate 32 bytes Random salt in js script
  • Bypass Login Page in Chain

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

  • Blog
  • Documentation
    • OpenAM / Access Management
    • OpenDJ / Directory Services
    • OpenIDM / Identity Management
    • OpenIG / Identity Gateway
    • OpenICF / Open Connector Framework
    • Intro to Identity
  • Forums
    • General Discussion
    • ForgeRock Products
      • OpenAM
      • OpenIDM
      • OpenDJ
      • OpenIG
      • OpenUMA
    • DevOps
    • Internet of Things
    • Documentation
    • Groups
  • Twitter
  • Facebook
  • Linkedin
  • Youtube

Log in with your credentials

Lost your password?

Forgot your details?

I remember my details