ISAM OAuth Inactivity

Its not immediately obvious, and commonly misconstrued as an problem of disappearing tokens, but the OAuth grants in ISAM have a "Maximum" Grant lifetime, as opposed to an inactivity in a default API Definition. This means that when you request a Token - say via ROPC and you are using the default settings of an... Continue Reading →

Simpler ISAM Authentication Service URLs

In order to clean up the instantiation URLs generated by the authentication service, you can use a ISAM HTTP transformation rule. I've just completed two examples of this. Remove PolicyId static prefix: This transformation removes the need to have a long static prefix at the beginning of the URL query string parameter you call to... Continue Reading →

Redirect after login from InfoMap or AuthSvc Policy

If you'd like to redirect after the completion of the login process from an InfoMap, you can set the equivalent of the EAI redirect header: eai-redir-url-header = am-eai-redir-url This can be done through the setting of the response token attribute: context.set(Scope.SESSION, “urn:ibm:security:asf:response:token:attributes”, “itfim_override_targeturl_attr”, "/someURL"); There is a technote showing this in other mapping rules here:... Continue Reading →

WordPress.com.

Up ↑