Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
    winlong
    @winlong
    when executing installation on suse linux 15 leap, it shows a message :
    SLF4J: Failed to load class "org.slf4j.impl.StaticLoggerBinder".
    SLF4J: Defaulting to no-operation (NOP) logger implementation
    SLF4J: See http://www.slf4j.org/codes.html#StaticLoggerBinder for further details.
    martipamies
    @martipamies
    Hi at all, my name is Marti Pamies and this is my first message at the Open Identity Platform Community. I am CTO of VICO Open Modeling, a company based in Barcelona. Two month ago we found this tool and it was a great surprise as the amazing features is able to provide. Now we are looking for some training to have a deeper Knowledge on it. For what I've read in a post by @vharseko some companies provides consulting and suport services. How we can get more information on it?
    Thks
    Maxim Thomas
    @maximthomas
    @arvindgu Hi, you need to implement interface com.sun.identity.authentication.modules.jdbc.JDBCPasswordSyntaxTransform and set your class implementation in Class to Transform Password Syntax setting of your JDBC module
    @winlong Hi, it is not critical message for OpenDJ console utils and does not affect their functionality
    Maxim Thomas
    @maximthomas
    @martipamies Hi, please send an RFP to support@3a-systems.ru
    kumar pravinchandra panchal
    @kumar1801

    HI @maximthomas

    Is there any option available in SSO federation using autoAuth parameter I can do federation without redirects for Microsoft applications?

    Maxim Thomas
    @maximthomas
    Hi @kumar1801 Could you provide more details about the case?
    kumar pravinchandra panchal
    @kumar1801
    @maximthomas with microsoftonline SSO page will not render in X-frame as they denying and we have to find out the solution without SSO page redirect we can do federation.
    Maxim Thomas
    @maximthomas
    @kumar1801 MS block ifame due to security issues, so this approach makes sence. As an alternative you could use OpenAM authentication API without UI
    kumar pravinchandra panchal
    @kumar1801
    @maximthomas can you please help me out for any documentation?
    Maxim Thomas
    @maximthomas
    @kumar1801 hi, what kind of help do you need?
    attriel
    @_attriel__twitter

    Hey I have what is apparently a weird question (based on my lack of search results):
    I'm trying to setup opendj on AWS EC2. I can get it to launch a primary and then any further nodes find a prior node and add themselves to the replication lists, that works great. But if i terminate anode without dsreplication disable, it stays in the list and i can't add a new replicant (timeouts i think).

    2 questoins:
    (1) is there any way to force-detach a deceased replicant by running a command/commands on the remaining nodes?
    (2) is there any configurable timeout for how long a node can be unreachable for replication before it gets dropped from the replication lists? (I don't know if such a setting exists, but if it does can it be configured)

    (my server admins tell me i can't rely on a shutdown script since a server/node could go bad and be unable to communicate it's own disconnect)
    kumar pravinchandra panchal
    @kumar1801
    @maximthomas With SameSite Configuration in IE 11 is not working correctly
    Maxim Thomas
    @maximthomas
    @kumar1801 there is a problem with IE11 itself.
    kumar pravinchandra panchal
    @kumar1801
    Yes
    Is there any way to change the response code 302 to 403 ?
    kumar pravinchandra panchal
    @kumar1801

    As due to 302 error code we are receiving pre-flight cors policy error.

    In earlier version of OpenAM modified to 403 but with new version we are receiving again 302

    Mike Schwartz
    @nynymike
    Hi guys.
    What's the story with OpenIdentityPlatform?
    Is there a new open source version of OpenDJ that was forked?
    kumar pravinchandra panchal
    @kumar1801
    @maximthomas is there any way to change error code in openam
    Maxim Thomas
    @maximthomas
    @kumar1801 Could you create an issue in the project?
    shivammukhi
    @shivammukhi
    Hi guys,
    Has anyone implemented scripted rest connector? Why is it not visible in the drop down of new connector page ?
    jimmydevenportdxc
    @jimmydevenportdxc

    We found a problem in OpenIDM with Configure->Authentication not loading, it seems to be missing the codemirror folder?

    It gets 404s on:

    • admin/libs/codemirror/lib/codemirror.js
    • admin/libs/codemirror/mode/groovy/groovy.js
    • admin/libs/codemirror/mode/javascript/javascript.js
    • admin/libs/codemirror/addon/display/placeholder.js

    There is no "codemirror" folder in /path/to/openidm/ui/admin/default/libs/.

    Link Configure->Social ID Providers gets a 404 on admin/libs/codemirror/mode/xml/xml.js

    Link Configure->System Preferences gets the same 404s as Configure->Authentication (same 4).

    Is there a missing folder that someone forgot to put into the zip?

    Thanks!

    jimmydevenportdxc
    @jimmydevenportdxc
    I solved my own problem by downloading codemirror.zip from codemirror.net and putting the correct files in /path/to/openidm/ui/admin/default/libs/codemirror/...
    jimmydevenportdxc
    @jimmydevenportdxc
    Actually, OpenIdentityPlatform/OpenIDM#6 already fixed this? Why doesn't the latest openidm-5.5.0.zip have the fix then?
    Mike Schwartz
    @nynymike
    Hey Guys, the SSL certificate on wrensecurity.org expired on 8/20
    My browser won't let me navigate there :-)
    Maxim Thomas
    @maximthomas
    @nynymike , hey, seems WrenSecurity community is not active recently. This gitter is for Open Identity Platform Community https://www.openidentityplatform.org/
    Shivangi301293
    @Shivangi301293
    Hello everyone, I have a question regarding OpenAM version 14.5.3
    Does this version of OpenAM support generic LDAP? If not then which server can be used to implement LDAP as a data store.
    Maxim Thomas
    @maximthomas
    @Shivangi301293 hello, OpenAM supports generic LDAP as a user data store.
    Shivangi301293
    @Shivangi301293
    @maximthomas I was in the middle of OpenAM setup where we configure data store and I didn't find generic LDAP server. Instead there were "IBM Tivoli Server" and "Oracle Directory Server, should any of them be used for the data store configuration?
    Maxim Thomas
    @maximthomas
    @Shivangi301293 OpenAM does not support generic LDAP as a Configuration data store out of the box, only as User Data store.
    Shivangi301293
    @Shivangi301293
    @maximthomas There used to be an option to select the type of data store labeled “Generic LDAPv3”, now I don’t see this option any more, so is one of the existing selections equivalent? Or does something need to be done to enable this selection?
    Maxim Thomas
    @maximthomas
    @Shivangi301293, in which version the option was available? Why can't you use OpenDJ for OpenAM config data store?
    Shivangi301293
    @Shivangi301293
    @maximthomas version 14.2.2 has the option
    Shivangi301293
    @Shivangi301293
    @maximthomas We can't use OpenDJ because we have customers, who already have LDAP servers with a large number of users set up for other applications. We need to give them an opportunity to reuse these existing servers to support the applications, which also require OpenAM. The customers do not wish to set up another LDAP services (i.e. OpenDJ) and maintain users’ credentials twice.
    mancheaka
    @mancheaka
    @maximthomas I'm trying to follow the Admin Guide's instructions for setting up SAML2 in "integrated mode". The Login part works properly but Logout does not trigger SLO. I've tested that using "standalone mode" works for both Login and Logout. I see messages in the Federation and Authentication log where it seems to create the SLO request, on Logout you see a message showing the URL-encoded form of the SLO request but the request is never fired. I'm taken straight to XUI's successful logout page but the IdP session remains intact as the SLO request was never sent. The module has SLO enabled set to true and the post-processing plugin is been added to the chain. The module config is set so that the request binding is HTTP-Redirect and the response binding is HTTP-POST. Which I don't think is an issue, since the post processing plugin seems to only support HTTP-Redirect anyways. Am I missing something obvious?
    Ramón Rial
    @rrialq
    Hello.
    A few days ago I upgrade the handler-elasticsearch to support ElasticSearch 7.x.
    But I have a question about OpenAM and Audit Logging.
    I know it is possible customize the access content (I can configure it to write the tokenId in the access.scv), but I would like to write the tokenId in the authentication.csv file after a successful login. Is this possible with the version 14.5.4 or should I modify the code to allow this?
    Ustaz Jahan Zaib
    @UstazZaib_twitter

    HI
    I am new here

    Just want to know can we use Open AM in AWS Dockers and it can auto scale
    how the configuration will happen if it auto scale e.g. opendj settings and other SSO things in Open AM

    Maxim Thomas
    @maximthomas
    Hi, @UstazZaib_twitter Autoscaling OpenAM instances is not supported, OpenAM could be deployed as a StatefulSet
    https://github.com/OpenIdentityPlatform/OpenAM/wiki/How-To-Run-OpenAM-in-Kubernetes
    Mike Schwartz
    @nynymike
    If you are using the K8S distro, you can autoscale the Gluu Server openid service (oxAuth). But a big challenge is auto-scaling your backend data service. At Gluu, we use LDAP and Couchbase for persistence. Forget autoscaling LDAP... and Couchbase does not support it yet. So it's definitely the holy grail... but not easy to accomplish.
    Ustaz Jahan Zaib
    @UstazZaib_twitter
    HI Everyone
    Any guideline how to add an auto generated attribute e.g. uuid while user is doing self service registration
    Mike Schwartz
    @nynymike
    To add a user, you are probably have some kind of program calling the SCIM /Users endpoint... so I would just generate the uuid before you call that endpoint ... every language has a uuid generation library, like in python has uuid.uuid4()
    Ustaz Jahan Zaib
    @UstazZaib_twitter
    HI Mike
    i am using the Self Service OpenAM Module
    Not sure how to add a customizable attribute their
    Mike Schwartz
    @nynymike
    oh, sorry, wrong chat!!! I thought this was the JanssenProject chat. Please ignore all my above comments.
    audouts
    @audouts
    I'm trying to use OpenDJ from a server. Ideally, I think Docker would be good but I can install it. Either way, I'm having trouble getting SSL to work. Can anyone help with that?