can Two OpenAM share the same session cookie ?

This topic contains 4 replies, has 2 voices, and was last updated by  Andy Cory 1 month, 4 weeks ago.

  • Author
    Posts
  • #25814
     Kavithak 
    Participant

    One OpenAM server (with OpenDJ as Config Store) serving as Authentication server and the second OpenAM Server (With it’s own config store and CTS Store) for OAuth2 transactions ?
    both opeam servers are pointed to same userstore Which is an OpenDJ,

    Is this feasible ?

    #25819
     Kavithak 
    Participant

    #25821
     Andy Cory 
    Participant

    The cookie is just a reference to a session created on OpenAM – two OpenAMs could feasibly share the same cookie, but not the same session.

    -Andy

    #25824
     Kavithak 
    Participant

    Hi Andy,

    Sorry for not being clear.

    We have two OpenAM Environments and we would like to use Rest API to authenticate users against the first OpenAM environment and we are getting an the SessionID or Token and we would like to check the feasibility to see if we can use this OpenAM1 SessionID or Token to initiate OAuth2 requests to the second OpenAM Environment.

    Please advise.

    Thanks,

    #25826
     Andy Cory 
    Participant

    Hi

    If you want users who authenticate to OpenAM ‘1’ to be able to access resources protected by OpenAM ‘2’, I suspect you would need to use OAuth2/OpenID Connect across the board, using both OpenAM servers as actors in one of the OAuth2 flows. I don’t think you’ll be able to use an SSO session created on OpenAM ‘1’ to do anything useful on OpenAM ‘2’.

    -Andy

Viewing 5 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic.

©2019 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?