Tagged: Access Management, Email
This topic has 3 replies, 2 voices, and was last updated 3 years, 11 months ago by Andy Cory.
-
AuthorPosts
-
July 10, 2018 at 6:55 am #22487
aniru2dh
ParticipantHi Team,
We have currently setup OpenAM 5.5 and OpenDJ 5.5 as the Data Store. We would like to use the forgot password and reset functions available within OpenAM. We have a requirement to send the user password over mail once the user is created in OpenDJ.We also need to send the password during forgot password. It would be a one time password and user needs to change the password during the first login.Is it available out-of-the-box in openam to customize the email to only send the password or does it require a customization.
Thanks,
Anirudh.July 10, 2018 at 12:07 pm #22489Andy Cory
ParticipantThis is likely to require custom handling. You can specify your own mail sending implementation in the Email Service for your realm. Inside that implementation, you’ll have access to the content of the mail message, and can also interact with your datastore. The wisdom of sending passwords via email instead of using a reset functionality is debatable, but sometimes we have to realise use-cases that we may not agree with!
-Andy
July 11, 2018 at 7:39 am #22500aniru2dh
Participant@acorysmart421-com Thanks for the information. We can customize the body of the email in the user self service settings. Is it possible to include the password attribute directly there something like %userpassword% so that it would send the password.
Thanks,
Anirudh.July 11, 2018 at 12:17 pm #22503Andy Cory
ParticipantI’m not aware of any way to do this out of the box, I’m afraid. The flow is designed in such a way that a password is never sent for security reasons.
-Andy
-
AuthorPosts
You must be logged in to reply to this topic.