Implementing the “Resetting Forgotten Passwords” functionality as described in the OpenAM Developer’s Guide requires some additional custom code.
It’s pretty straight forward to implement this functionality and can be done in 4 steps (per the Developer’s Guide):
- Configure the Email Service
- Perform an HTTP Post with the user’s id
- OpenAM looks up email address (based on user id) and sends an email with a link to reset the password
- Intercept the HTTP GET request to (more...)
A client of mine has asked me to assist them in finding a full-time Senior OpenAM Engineer. They are a startup, based in Northern, Virginia. They are working on some pretty cool initiatives with OAUTH2 and SAML and need an experienced engineer to lead this effort.
If you are interested in this please feel free to reach out to me and I’ll put you in touch.
Filed under: IdM
Looks like it’s time to start planning for the IDM conference schedule. There are some great conferences planned and I need to figure out how to start budgeting for some of these. Let me know if I have missed any conferences that should be listed.
My son (10) has been asking about VPNs a lot lately. Which I thought was because of all of the news lately about the NSA. I ended up showing him tunnel bear, which he quickly installed on his laptop and iPhone. I complimented my son for his interest in security (more...)
I was working on a few scripts to test out some of the new REST APIs in OpenAM 11. I saved them out to GitHub and you are welcome to have at them.
I thought it might also be cool to share some of the other Repo’s that are related (more...)
I am offering an introductory special to ForgeRock’s Identity (I3) Stack. I am calling this the “Sequester Special”. You get free software (**ForgeRock support license required for binaries used in a production environment**) and a reduced rate on professional services.
Download the information sheet here.
Sequester Special | For those (more...)
I am wrapping a crazy busy week. Probably one of my most technically in-depth week in a really long time. So what kept me busy? Deep-diving into OpenAM’s Entitlement’s engine, learning about it’s REST interfaces and how to extend OpenAM to leverage custom service types. I’ll explain later since I (more...)
In response to a post that I had written before on how to install OpenDJ and OpenAM I had someone remind me that I never came back and wrote the follow on post (which I had promised to do). They posted the question to my other blog site (which I (more...)
I have been installing the ForgeRock stack on Ubuntu a lot lately. One of the things that I noticed is that when configuring OpenAM and OpenDJ for automatic startup you need to let OpenDJ finish starting up before starting Tomcat (OpenAM) … otherwise OpenAM will not be able to find (more...)
I am working with a client today who has Oracle Identity Federation (OIF) 11g configured with Oracle Access Manager (OAM) 10g as the default Authentication Engine. With this configuration the authentication module is dictated by the OAM policy configuration. If you set the OAM policy (the policy that protects the (more...)