-
tomoko replied to the topic Seting up a multivalue in LDAP in selfregister module with JAVA in the forum Access Management 4 years, 8 months ago
Thanks a lot, Peter Major. It worked.
user.put(“hello”, JsonValue.array(“foo”, “bar”)); -
tomoko replied to the topic Internal Error when using OpenID connect after allowing acces to account in the forum Access Management 4 years, 8 months ago
Finally I found out what was the problem:
I was using docker, and exporting the config of the server to a xml file (by the way, that tool is very buggy).
Until i found out that inside the big xml with all lthe configuration there were some references about password and encryption things.So i found out, i had to not only get the xml with the…[Read more]
-
tomoko replied to the topic Internal Error when using OpenID connect after allowing acces to account in the forum Access Management 4 years, 10 months ago
Failing environment:
-OpenAM 13.0.0
Checking a file it says
“grep version serverdefaults.properties”
com.iplanet.am.version=OpenAM 13.0.0 Build 5d4589530d (2016-January-14 21:15)-Apache Tomcat/7.0.75
-Internal embbed LDAP in OpenAM.
-OracleJDK 1.8 , also fails with OpenJDK
-The openAM server has a UMA configuration done. Using an import…[Read more]
-
tomoko started the topic Internal Error when using OpenID connect after allowing acces to account in the forum Access Management 4 years, 10 months ago
Hi:
I am trying to do the basic OpenID Connect configuration from pages like
https://wikis.forgerock.org/confluence/display/openam/OpenID+Connect+Quick+Start
https://wikis.forgerock.org/confluence/display/openam/OpenID+Connect+-+Curl+CommandsAfter setup the OAuthProvider , and the agent, everythings works ok in one of my environments.
I can do…[Read more] -
tomoko started the topic UMA: is it posible to extract info froma ticket token? in the forum Access Management 4 years, 11 months ago
Hello:
Given a ticket obtained from the “/uma/permission_request” endpoint, is it posible later to extract info from it? Recover the resourceSetID and the scopes it contains?
Is it posible to introspect it? Or using a OpenAM API get the info it contains?Thanks
-
tomoko started the topic Is it posible create UMA policies using JSON policy API? in the forum Access Management 4 years, 11 months ago
Hello:
Using the “json/policies?_action=create” I can create Policies, ok.
But I would like to create UMA policies. The reason I use the “policies?_action=create” (not the uma/policies?_action=create) API is because with that API an administrator can create policies, and the UMA API needs the user to be logged in.After creating a UMA…[Read more]
-
tomoko started the topic Does the import XACML policy work in OpenAM 13.0? in the forum Access Management 4 years, 11 months ago
Hello:
I am trying to import a XACML policy into OpenAM13.0
But when trying to import it into a realm, I get a “Unable to retrieve application under realm /MYREALM”.
If I try to import it into root realm, I got a “Invalid resource type null, must be one from the set defined against the containing application.”
Searching in google, I see some old…[Read more] -
tomoko replied to the topic Seting up a multivalue in LDAP in selfregister module with JAVA in the forum Access Management 4 years, 11 months ago
Thanks a lot for the answer.
Unfortunately, I didt have time to check it, but I will try to do it when I have time. -
tomoko replied to the topic Seting up a multivalue in LDAP in selfregister module with JAVA in the forum Access Management 4 years, 12 months ago
The user is a JSvonValue object, and it is made in the default UserDetailsStage, I have not changed it.
(In fact I didnt remember how that object is made, honestly.)
I see it is put in the context and recovered in my new final stage.
In my final Stage of the SelfRegister flow, in the new stage i have added, it has the value of{ “username”:…[Read more]
-
tomoko started the topic Seting up a multivalue in LDAP in selfregister module with JAVA in the forum Access Management 5 years ago
Hello:
I am changing the standard selfregister module, so when user creation, it puts a field in the ldap of the user with some predefined values automatically.I see that org.forgerock.selfservice.stages.registration.UserRegistrationStage;
it uses to create userCreateRequest request = Requests.newCreateRequest(config.getIdentityServiceUrl(),…[Read more]
-
tomoko started the topic How long are the ticker in UMA valid? in the forum Access Management 5 years ago
Hello:
Checking UMA flow for accessing an uma protected resource, i see it is necesary for the Resource Server to create a ticket. And to do so, it is necesary the PAT, that is created when the resource owner is “logged into” the system.
I would like to create a system that allows to access to resource without intervention of the res owner after…[Read more]