Using AM oauth access token to communicate with IDM rest api?

This topic contains 3 replies, has 3 voices, and was last updated by  jo_tellier 2 months, 1 week ago.

  • Author
    Posts
  • #23997
     jm89 
    Participant

    Is this possible? I have integrated idm with am.

    Looking at backstage it seems like you have to go through a long chain of requests to obtain a data store token which allows you to communicate with the idm rest api.

    I have a application which goes through the oauth flow(am for authentication) to obtain the access token, i then want to communicate with idm’s rest api. If i follow what is in backstage in step 2 i need to provide the users password and username again. Any other way i can obtain the data store token without having to provide the users username and password again?

    This the the backstage guide i am referring to https://backstage.forgerock.com/knowledge/kb/book/b41310765#a45321184

    #23998
     Jake Feasel 
    Moderator

    Take a look at this blog post: https://forum.forgerock.com/2018/08/using-ig-protect-idm-secure-standards-based-integration/

    The backstage guide you linked to describes how to setup IDM as a OIDC Client to AM. What you are asking for is how to setup IDM to be an OAuth2 Resource Server- for that, you need IG.

    #24000
     jm89 
    Participant

    Isn’t there any way to exchage the am access token for an am session cookie? Then i could use that to continute the steps outlined on backstage to eventually get the data store token and communicate with an idm rest endpoint.

    Ideally i want to stick to my current integration of idm as an oidc client.

    #24712
     jo_tellier 
    Participant

    Hello @jitu-miah,

    I’m wondering what you ended up doing. I’m trying to do the same thing.

    Thanks.

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.

©2019 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?