Specialised in IAM (security, access control, identity management) and Open Source integration, settled in 2004 by IAM industry veteran, JANUA offers high value-added products and services to businesses and governements with a concern for Identity Management and Open Source components.
JANUA provides better security, build relationships, and enable new cloud, mobile, and IoT offerings from any device or connected thing.
Saving OAuth2 consent: when configured as an OAuth2 service provider, OpenAM is capable of saving the user’s consent. This prevent the resource owner from having to validate the authorization consent each time for the same client and scopes.
In a previous post, we have seen that OpenAM implements the OpenID Connect protocol and that it is possible to configure it as an OIDC provider (with some limitation though). In the current post, we will learn how to login with email on OpenID Connect provider based on OpenAM
Lately we have been trying to use OpenID Connect with OpenAM. By following the official documentation, you can easily configure a basic scenario where OpenAM is just an OAuth/OpenID Connect provider. However, we have found that some goals are not easily achievable with the current available versions of OpenAM.
The OpenAM Capture and Replay password feature can be really handy in some scenarios. Unfortenately, for some reason, it does not work when the authentication is made through the REST interface, but we can use a pretty simple workaround to that issue.
OpenAM Java API : Retrieve LDAP Datastore credentials. When developing plugins in OpenAM, using the Java SDK API, you could need to retrieve some information from a registered LDAP datastore. But in order to do that, you have to extract the directory credentials from OpenAM configuration.
OpenIDM and Google Apps new API : a few months ago, Google announced that as of April 20, 2015 the Provisioning API, among others, will be discontinued and replaced by the Admin SDK API.
Since the deprecation period for these APIs is coming to an end, the Googleconnector provided with OpenIDM 2.x will not work anymore as of April 20, 2015 and unfortunately the one provided with OpenIDM 3.x and based on the new APIs is only available as part of the commercial product. Therefore, if you are using the community version of OpenIDM, soon youwill no longer beable to manage users on Google Apps.