par janua | Nov 25, 2016 | Communauté, Sécurité, SSO
In this Oauth2 and OpenID Connect presentation we will talk about : ● OIDC concepts ● OIDC flows ● Using OIDC with refresh token ● OIDC OpenAM use case example Oauth2 and OpenID Connect
par Christophe Desclaux | Sep 30, 2016 | Communauté, Gestion des Identités, Open Source
If you need to make an audit on an installed OpenLDAP on windows you will need some stuff: We installed the version downloadable on userbooster, don’t forget that to login you will need to use « cn=Manager,dc=maxcrc,dc=com » / « secret ». In order to activate...
par janua | Sep 9, 2016 | Communauté, Gestion des Identités, Sécurité, SSO
This article describes how to use authorization code grant type with OpenAM. Authorization code is the most secured grant when providing Oauth2 connection, as the access token is not stored within your browser. On openam the authorization code has been made 1H to...
par janua | Sep 9, 2016 | Communauté, Gestion des Identités, Sécurité, SSO
Refresh token lifecycle in OpenAM could be very tricky, not easy to understand and implement. So that we share in this document our experiences. 1. Description Refresh Token is a feature provided with Oauth2 Authorization code or Resource Owner Password Credentials...
par Christophe Desclaux | Sep 2, 2016 | Communauté, Gestion des Identités, Provisioning
We recently had to change OpenIDM self-service UI in order to add the user photo in his account profile. For one of our customer we wanted to show this picture instead of the impersonal icon used previously: The process to integrate the icture is not obvious so that...
par janua | Juil 15, 2016 | Communauté, Gestion des Identités, Sécurité, SSO
This post is about understanding tokens roles in OpenID Connect (OIDC) intégration: 1. Presentation OpenID Connect Specification is described at . OpenID Connect is provided on top of OAuth2 layer, defined in RFC 6749. OpenID provides authentication which is expressed...
