Profile cover photo
Profile photo
Simon Moffatt
80 followers -
Product Management @ForgeRock
Product Management @ForgeRock

80 followers
About
Posts

Post has attachment
OpenIDM: Relationships as First Class Citizens
One of the most powerful concepts within OpenIDM, is the ability to create arbitrary managed objects on the fly, with hooks that can be triggered at various points of that managed objects life cycle.  A common use of managed objects is to separate logic, po...
Add a comment...

Post has attachment
Explain it Like I'm 5: OAuth2 & UMA
This entry is the first in a mini-series, where I will attempt to explain some relatively complex terms and flows in the identity and access management space, in a way a 5 year could understand. Hopefully... First up is OAuth2 and  User Managed Access or UM...
Add a comment...

Post has attachment
UMA Part 2: Accessing Protected Resources
This second blog on UMA, follows on from part 1, where I looked at creating resource sets and policies on the authorization server. Once an authorization server understands what resources are being protected and who is able to access them, the authorization...
Add a comment...

Post has attachment
UMA Part 1: Creating Resource Sets & Policies
User Managed Access (UMA)  is a new standard, that defines how resource owners can control protected-resource access by clients operated by arbitrary requesting parties, where the resources reside on any number of resource servers, and where a centralized a...
Add a comment...

Post has attachment
API Throttling with OpenIG
A common requirement with regards to API access, is the ability to throttle the number of hits a user or service can have against a particular endpoint or set of endpoints - similar to a soft paywall style use case. The nightly build of OpenIG  contains a n...
Add a comment...

Post has attachment
MySQL Profile Migration into OpenDJ
Following on from my previous post on OpenDJ password schemes , a common requirement is often to migrate users into the OpenDJ profile store from an existing database. There are numerous ways
to do this, such as LDIF file imports or using OpenIDM reconcili...
Add a comment...

Post has attachment
Password Migration & Storage in OpenDJ
A common use case, is the migration of user profile data to OpenDJ.  Especially in large scale consumer facing identity projects, most clients already have repo's that contain user profile data. Sometimes these stores also contain authentication data - that...
Add a comment...

Post has attachment
Stateless Tokens within OpenAM 13.0
The unstable  OpenAM nightly build of 13.0 , contains a great new feature: the ability to create stateless or client side tokens.  This brings a range of new use cases to the access management table, including increased scale (less server side storage, CTS ...
Add a comment...

Post has attachment
Open Source, Binaries & Celebrity Chefs
Working for an open source software company, I'm faced with questions surrounding the open source approach and model in most customer meetings.  Many customers understand what open source is, or they think they do, but still want to know more. Open source v...
Add a comment...

Post has attachment
Building a Password Checkout Service in OpenIDM
A common use case within the identity life cycle management world, is what to do with shared and privileged accounts.  Common accounts such as administrator, root, backup operator accounts and other delegated administration accounts, lead to a significant a...
Add a comment...
Wait while more posts are being loaded