Hi, I am using UAA war file in tomcat. I want to customize the validation message of mismatching password and confirm password (in reset password page). I am not getting where to change that code. Can

#uaa #cf

Hi, I am using UAA war file in tomcat. I want to customize the email content of password reset request. I am not getting where to change that code. Can anyone please provide solution for this? Thanks

#cf #uaa

Hey Shilpa, I wouldn’t be surprised to find this is intentional. If this didn’t happen, then it would be possible for an attacker to try submitting many addresses, and then receive confirmation of whi

#cf #uaa

Hi, If I pass email id (which is not registered)for reset password link then it should give error message but it is giving success message only. I am not getting where to change that code. Can anyone

#cf #uaa

Hi If we don't need to use the SAML protocol with UAA, do we really need to configure that section e.g. encryption keys? It seems UAA won't start if that section is empty. Thanks Enrique

#uaa

You need to set e.g. the config.attributeMappings['user.attribute.department'] attribute in the identity provider registration. See https://docs.cloudfoundry.org/api/uaa/version/74.18.0/index.html#oau

#uaa

We have our own UAA server running in a cloud.gov environment which we use for all applications that are deployed in cloud.gov. These applications use OAuth 2 to integrate with the UAA server and the

#uaa

Thanks again Dan for your feedback. We will certainly try that option. Good day. best regards -CG

#uaa

Hi CG - It looks as if you've taken the right step to disable the create account and password reset links. We'd expect selfServiceLinksEnabled to have the documented effect (determines if users are al

#uaa

in the uaa.yml, when I set selfServiceLinksEnabled to false under login: selfServiceLinksEnabled: false they (create an acc and password reset link) still appear. Any reliable way to disable them? Fur

#uaa

I coded up running UAA locally awhile back and you might find something useful in my scripts, or consider using the scripts yourself https://github.com/starkandwayne/quick-uaa-local Nic

#uaa

Hello, I'm facing issues when trying to deploy a war file into Tomcat.I can build the file and everything but after deploying it into Tomcat I'm getting the below error. Can anyone help me? thanks! Ex

#uaa

Thanks. The SAML assertion generated by ADFS contains "https://<HIDDEN>/saml/SSO/alias/cloudfoundry-saml-login-dev" while the bearer assertion in the metadata file is https://<HIDDEN>/oauth/token/alia

#uaa

probably https:// and not http://

#uaa

It's been a while since I dug into that code, but I think the Recipient should match the URL you're posting the message to, which is: http://<host>/uaa/oauth/token/alias/cloudfoundry-saml-login-dev Fi

#uaa

Thanks. I digged into this a little deeper. During the SAML verification, confirmed is never TRUE and that’s why it gives the following error 2019-12-10T16:45:24.58-0500 [APP/PROC/WEB/1] OUT Caused by

#uaa

1. Take a look at the endpoint `/saml/metadata` on your server. For example https://login.run.pivotal.io/saml/metadata In the metadata, take a look at: urn:oasis:names:tc:SAML:2.0:bindings:URI binding

#uaa

Still having issues. I tried several things and they all seem to fail. 1. Per the documenatation, the URL should go to http://vyscu3.localhost:8080/uaa/oauth/token/alias/vyscu3.cloudfoundry-saml-login

#uaa

Assertion can be signed, encrypted(name ID) or both. Unsigned and Unencrypted is not recommended. Filip

#uaa

Thanks Filip. You are correct and thanks for pointing it out. I will pass Assertion and see what happens. As a side question - I am assuming that the Assertion would have to be unencrypted. right ? Do

#uaa