Forum Replies Created

Viewing 9 posts - 1 through 9 (of 9 total)
  • Author
    Posts
  • #5350
     Vengadesh
    Participant

    Do we have to consider cookie properties like Secure cookies and HttpOnly cookie while creating the cookie?

    #5349
     Vengadesh
    Participant

    Hi Rondini,

    In the custom login Since the iPlanetDirectoryPro Cookie created by us, anyone can steal the cookie and misuse of that right?

    How do we protect this cookie? Are we missing out anything?

    Thanks

    #4993
     Vengadesh
    Participant

    Thanks for your inputs Rondini..! scenario worked fine.

    #4977
     Vengadesh
    Participant

    Hi Rondini,

    I’m again back with another doubt. In case of federation openam doesn’t require any agent.. If so then how do we redirect the user to our custom login page when he/she performs IdP/SP initiated federation?

    Can please clarify this one?

    #4957
     Vengadesh
    Participant

    Hi Soma,

    I have done a POC on this and it worked fine using the OpemAM REST API’s.

    Regards,
    Venga

    #4956
     Vengadesh
    Participant

    Ohh Yes.. finally it worked.

    thank you very much.

    #4950
     Vengadesh
    Participant

    Hi Rarondini,

    Thank you very much for your inputs.

    i have one more question.
    ……………………………
    if you could see by default, if an user hits a protected resource then he will be redirected to the openam login page with goto url.

    how to redirect the user to my own login page when user hits the protected resource. Is there any place in openam or agentconfiguration, we have to mention our own login page url?

    I tried updating the agent configuration with my login page url but it’s not getting reflected. though the default login page is commented out, agent is still redirecting me to the old login page.
    ………………………………………………………..
    # LOGIN URL
    # Specifies the login URLs to be used by the Agent to redirect
    # incoming users without sufficient credentials to the OpenAM
    # authentication service.
    # Hot-Swap Enabled: Yes
    #
    #com.sun.identity.agents.config.login.url[0] = http://myhost.test.com:8080/openam/UI/Login
    com.sun.identity.agents.config.login.url[0] = http://myhost.test.com:8083/Openam/Login.jsp
    ……………………………

    It would be great if you can help me with this.

    Thanks,
    Venga

    #4945
     Vengadesh
    Participant

    Hi,

    I have seen the REST API’s and I’m able to successfully invoke those and get the ssotoken, success url back. but I have few questions

    1. what to do with this ssotoken and success url? do we have to redirect the user directly to the target?
    2. Do we have to set the cookie?

    can you please guide me on this?

    Regards,
    Venga

    #4944
     Vengadesh
    Participant

    Hi,

    I have seen the REST API’s and I’m able to successfully invoke those and get the ssotoken, success url back. but I have few questions

    1. what to do with this ssotoken and success url? do we have to redirect the user directly to the target?
    2. Do we have to set the cookie?

    can you please guide me on this?

    Regards,
    Venga

Viewing 9 posts - 1 through 9 (of 9 total)