Unable to get user role/group information

This topic contains 1 reply, has 2 voices, and was last updated by  Peter Major 5 days, 3 hours ago.

  • Author
    Posts
  • #18861
     firosiro 
    Participant

    I am using OpenAM version 11.0.3 and when I try to invoke opeanam/json/users call, unable to get role/group information. Groups are already defined in OpenAM. If I go to openAM console and check the universal id value for a group, its listed as below:

    Universal ID:
    id= Admin Role,ou=group,dc=abc,dc=com

    When we try to invoke /users call, it returns universal id value but instead of role we get email id.
    “universalid”:
    [
    “id=test123@abc.com,ou=user,dc=abc,dc=com”
    ]

    Is there a way to retrieve user role information in OpenAM 11.0.3?

    Thanks.

    #18870
     Peter Major 
    Moderator

    Long story short:
    https://bugster.forgerock.org/jira/browse/OPENAM-9778

    There is currently no nice way of retrieving group membership information in OpenAM.

    The not so nice way of going about it is to retrieve the group entries and look at the uniqueMember/member attributes (which contain the real DNs of the users, not universal IDs).

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2017 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?