|
UAA api /introspect does not seem to be workign as expected
#uaa
Jeremy, Thanks for your help ! I found what the problem was. I ran a local copy of the UAA on my laptop, pointing to the cloud database and ran your testcases; it all worked as expected ! I was able t
|
Jeremy, Thanks for your help ! I found what the problem was. I ran a local copy of the UAA on my laptop, pointing to the cloud database and ran your testcases; it all worked as expected ! I was able t
|
By
Shetty, Viraj S [CTR]
· #9173
·
|
|
UAA api /introspect does not seem to be workign as expected
#uaa
Hi Jeremy, Thanks for that testcase. I followed your testcase on our UAA Server except with one change; since we are setup with MFA, I used the uaac token sso to get Marissas token. The UAA app versio
|
Hi Jeremy, Thanks for that testcase. I followed your testcase on our UAA Server except with one change; since we are setup with MFA, I used the uaac token sso to get Marissas token. The UAA app versio
|
By
Shetty, Viraj S [CTR]
· #9169
·
Edited
|
|
UAA api /introspect does not seem to be workign as expected
#uaa
Hi Viraj, I couldn't replicate the issue you've described. While logs are always helpful, more helpful would be a small set up replicating the issue. For example, this is what I did to replicate your
|
Hi Viraj, I couldn't replicate the issue you've described. While logs are always helpful, more helpful would be a small set up replicating the issue. For example, this is what I did to replicate your
|
By
Jeremy Morony
· #9166
·
|
|
UAA api /introspect does not seem to be workign as expected
#uaa
Jeremy, I upgraded to the latest UAA version 74.24.0 and I still see the same issue. Is there something I can provide from logs that might help ? Thanks, Viraj
|
Jeremy, I upgraded to the latest UAA version 74.24.0 and I still see the same issue. Is there something I can provide from logs that might help ? Thanks, Viraj
|
By
Shetty, Viraj S [CTR]
· #9156
·
|
|
UAA api /introspect does not seem to be workign as expected
#uaa
Hi Jeremy, Thanks for taklng the time to respond. Really appreciate it. I have double checked this many times. From Postman, I saw the request that is being sent and checked the bearer token to see th
|
Hi Jeremy, Thanks for taklng the time to respond. Really appreciate it. I have double checked this many times. From Postman, I saw the request that is being sent and checked the bearer token to see th
|
By
Shetty, Viraj S [CTR]
· #9155
·
|
|
UAA api /introspect does not seem to be workign as expected
#uaa
Hi Viraj, From the details provided it looks like the call to /introspect might be using the user's token in the authorize header instead of a client token. A successful curl request looks like: curl
|
Hi Viraj, From the details provided it looks like the call to /introspect might be using the user's token in the authorize header instead of a client token. A successful curl request looks like: curl
|
By
Jeremy Morony
· #9154
·
|
|
UAA api /introspect does not seem to be workign as expected
#uaa
I increased the logging for the UAA and found this exception. The error message is "User is not anonymous". Any idea what this could mean? 09-10T17:34:55.74-0400 [APP/PROC/WEB/0] OUT [2020-09-10 21:34
|
I increased the logging for the UAA and found this exception. The error message is "User is not anonymous". Any idea what this could mean? 09-10T17:34:55.74-0400 [APP/PROC/WEB/0] OUT [2020-09-10 21:34
|
By
Shetty, Viraj S [CTR]
· #9153
·
Edited
|
|
UAA api /introspect does not seem to be workign as expected
#uaa
Hi All, We are using UAA version 74.14.0 We have a UAA installation for our internal applications in cloudfoundry environment. We have been having a problem in verifying the oauth token (JWT token) us
|
Hi All, We are using UAA version 74.14.0 We have a UAA installation for our internal applications in cloudfoundry environment. We have been having a problem in verifying the oauth token (JWT token) us
|
By
Shetty, Viraj S [CTR]
· #9152
·
|
|
Client secret rotation in UAA
#uaa
#cf
What I have found is that when I set the secret, add a secret or delete the secret later for a UAA client- the lastmodified field of the client does not get updated. Ideally, there should be a timesta
|
What I have found is that when I set the secret, add a secret or delete the secret later for a UAA client- the lastmodified field of the client does not get updated. Ideally, there should be a timesta
|
By
Shetty, Viraj S [CTR]
· #9133
·
|
|
Client secret rotation in UAA
#uaa
#cf
Hi All, I am trying to create an automation script which will rotate the client secret every 30 days. I am trying to see if there is an API in UAA which will give me the timestamp of when the last tim
|
Hi All, I am trying to create an automation script which will rotate the client secret every 30 days. I am trying to see if there is an API in UAA which will give me the timestamp of when the last tim
|
By
Shetty, Viraj S [CTR]
· #9132
·
|
|
Deploying UAA for external users
#uaa
#cf
Thanks Jonathan. I will take a look at that.
|
Thanks Jonathan. I will take a look at that.
|
By
Shetty, Viraj S [CTR]
· #9116
·
|
|
Deploying UAA for external users
#uaa
#cf
Just in case this is useful to you, I suggest taking a look at the CF (hence probably also cloud.gov) feature called “Route Services”. Using this platform feature would allow you to deploy a vanilla U
|
Just in case this is useful to you, I suggest taking a look at the CF (hence probably also cloud.gov) feature called “Route Services”. Using this platform feature would allow you to deploy a vanilla U
|
By
...
· #9114
·
|
|
Deploying UAA for external users
#uaa
#cf
Thanks Enrique. We are deploying UAA in cloud.gov for our agency and it will be used by applications deployed in cloud.gov for our agency. I can add a nginx proxy in front but I think I should be able
|
Thanks Enrique. We are deploying UAA in cloud.gov for our agency and it will be used by applications deployed in cloud.gov for our agency. I can add a nginx proxy in front but I think I should be able
|
By
Shetty, Viraj S [CTR]
· #9113
·
|
|
Deploying UAA for external users
#uaa
#cf
I would expect you place a well hardened reverse proxy in front of your UAA, and that is what you use to control what is exposed to the outside world and what is not? Regards Enrique
|
I would expect you place a well hardened reverse proxy in front of your UAA, and that is what you use to control what is exposed to the outside world and what is not? Regards Enrique
|
By
Enrique Cano
· #9112
·
|
|
Deploying UAA for external users
#uaa
#cf
We want to deploy UAA for external users of the organization. This UAA deployment would only be used by external users and so some of the URLs would have to be exposed to the internet. But I want a la
|
We want to deploy UAA for external users of the organization. This UAA deployment would only be used by external users and so some of the URLs would have to be exposed to the internet. But I want a la
|
By
Shetty, Viraj S [CTR]
· #9111
·
|
|
While creating user ,emails set primary is set to true while sending request but after creating in the response the primary is set with false
#uaa
#cf
Hi All, I tried to create user and I passed the value true for emails primary but as response it is set primary value as false. Why the primary value does not set with true? can any one please tell ab
|
Hi All, I tried to create user and I passed the value true for emails primary but as response it is set primary value as false. Why the primary value does not set with true? can any one please tell ab
|
By
shilpa kulkarni
· #9091
·
|
|
Why UAA is considering username field instead of email field from uaa users table for sending reset password link ?
#cf
#uaa
Hi All, while creating user I have not given email address as username but the user is having email address in email field. when i try to check the forgot password(reset password) functionality it is
|
Hi All, while creating user I have not given email address as username but the user is having email address in email field. when i try to check the forgot password(reset password) functionality it is
|
By
shilpa kulkarni
· #9090
·
|
|
Updated Password policy will be changed to configurations added in uaa.yml file after restarting uaa tomcat.
#cf
#uaa
Hi All, I have used update identity provider api(https://docs.cloudfoundry.org/api/uaa/version/74.21.0/index.html#update) to update the password policy. It worked for me. But if I restart my uaa tomca
|
Hi All, I have used update identity provider api(https://docs.cloudfoundry.org/api/uaa/version/74.21.0/index.html#update) to update the password policy. It worked for me. But if I restart my uaa tomca
|
By
shilpa kulkarni
· #9055
·
|
|
Customize the Email content of password reset request
#cf
#uaa
I got to know to change the email content of password reset request. In the uaa tomcat in the templates\mail\reset_password.html file I have customized the content. But I want to pass username in the
|
I got to know to change the email content of password reset request. In the uaa tomcat in the templates\mail\reset_password.html file I have customized the content. But I want to pass username in the
|
By
shilpa kulkarni
· #9054
·
|
|
Customize the Email content of password reset request
#cf
#uaa
Perhaps try finding the UAA core team on the CF Slack in the #uaa room and they might be able to help you. Nic
|
Perhaps try finding the UAA core team on the CF Slack in the #uaa room and they might be able to help you. Nic
|
By
...
· #9046
·
|
