With the help of just a few additional packages I am able to quickly create a base set of APIs. I’ll go through the core aspects of this as well as include a video walk-through. This application is pretty simple with a MySQL database backend and a Go application as the middle-layer. In the attached video I step through how I setup the database and the go source code to create a set of APIs to interact with the MySQL backend.
A lot has changed in the ForgeRock DevOps space since I last wrote a blog post about setting up ForgeRock in Docker containers (way back in 2016). ForgeRock has since integrated with Kubernetes and has instructions for deploying to local development environments and to Google and Amazon cloud environments. Here’s a quick and dirty set …
ForgeRock dev environment (forgeops) – Cheat Sheet Read More »
A quick demo of OpenAM’s Token Translation Service According to Wikipedia: In a typical usage scenario, a client requests access to a secure software application, often called a relying party. Instead of the application authenticating the client, the client is redirected to an STS. The STS authenticates the client and issues a security token. Finally, …
ok guys … ForgeRock released updates across the board today: Access Management – AM 13 Identity Management – IDM 4 Directory Services – DJ 3 Identity Gateway – IG 4 I have only had a chance to go through the OpenAM release notes … and this is a big release for OpenAM. Clearly a ton …
ForgeRock upgrades entire stack today! #OpenAM #OpenIDM #OpenDJ #OpenIG Read More »
Overview A very common use case, when implementing ForgeRock’s OpenAM, is forcing a user to reset their password the next time they login. Seems easy enough right? … next time a particular user authenticates in they should be prompted to change their password before continuing on to the resource (web page) that they had originally …
OpenAM: Forcing users to reset password on next login. Read More »
On average I spend a lot of time opening documents online. One set of documents I refer to frequently is the ForgeRock Technical Document set. While it’s not overly arduous to open a browser tab and click on a bookmark or type in the URL, I have wanted to find a better shortcut for this task. …
I use the command line a lot when interfacing with OpenDJ. One of the issues with this is that I often run into an issue with the BindDN user’s password has an “!” (bang) in it. As this is a special character in Unix/Linux command line, it will typically cause unexpected results. With ldapsearch you …
A customer needed to ensure that passwords contained at least one ‘special character’ when a new password was created in OpenIDM. I borrowed heavily from the provided samples but had to figure out the correct regexp formatting. Here is the function that I used to implement this: function atLeastXSpecialChars(fullObject, value, params, property) { isRequired = …
Here is a quick note to help you correctly configure the Scripted SQL Connector when working with different schemas in an Oracle Database. By default the connector assumes that you are querying the default schema, which can be problematic if you happen to be using a different schema (user). The default connector file will look something like …
Using a different Oracle schema with OpenIDM’s Scripted SQL Connector Read More »
Implementing the “Resetting Forgotten Passwords” functionality as described in the OpenAM Developer’s Guide requires some additional custom code. It’s pretty straight forward to implement this functionality and can be done in 4 steps (per the Developer’s Guide): Configure the Email Service Perform an HTTP Post with the user’s id OpenAM looks up email address (based on …
Resetting Forgotten Passwords with @ForgeRock #OpenAM Read More »