2018-10-05 09:16:02 +0200 | answered a question | How to authenticate a user with keyrock installed in own computer? Here you will find the related documentation, with videos and tutorials https://catalogue.fiware.org/enablers... |
2018-03-15 10:47:07 +0200 | commented question | How to authenticate a user with keyrock installed in own computer? Here you will find the related documentation, with videos and tutorials https://catalogue.fiware.org/enablers/identity-management-keyrock/documentation |
2017-10-16 16:37:36 +0200 | answered a question | FIWARE : Idm Keyrock under SSL error AH01990: PRNG still contains insufficient entropy! It seems to be a problem with Cryptography lib. I see several forums in which developers propose solutions to it. |
2017-09-14 12:19:19 +0200 | answered a question | How do you create a virtual machine in the cloud? Hi! I recommend you to see FIWARE Academy videos to learn how to use Cloud Portal: https://edu.fiware.org/course/view.ph... |
2016-12-14 11:41:56 +0200 | commented answer | Keyrock Token duration As OAuth2 and Keystone tokens are different, they should also have different expiration time parameters in the configuration. Please, could you implement it that way and contribute the code to the project? |
2016-12-13 10:28:21 +0200 | answered a question | Keyrock Token duration Hi, Keystone tokens expiration time is configured in https://github.com/ging/keystone/blob... Regarding OAuth2 tokens, right now the expiration time is not configurable. We have plans of adding this possibility soon. |
2016-10-20 11:09:29 +0200 | answered a question | SCIM API - Keyrock Fiware Duplicated. Answer in http://stackoverflow.com/questions/39... |
2016-09-05 13:30:41 +0200 | answered a question | Keyrock is compatible with the API used by OpenStack Mitaka Components? Hi, we have not performed tests yet. But if the token API has not changed, it should work. |
2016-08-24 13:39:51 +0200 | answered a question | Enabling Communication between IdM and AuthZforce? I see in the GItHub issue you have finally solved the problem. |
2016-06-23 16:56:55 +0200 | answered a question | Documentation keyrock Thanks, it is fixed now. The right endpoint is http://cloud.lab.fiware.org:4730. |
2016-05-30 13:24:04 +0200 | commented question | Keyrock logout redirect URL I don't understand what do you mean with "when logging out of our application, Horizon IDM redirects to its own login screen." IdM doesnt support single sign out. When you log out in Horizon you are of course redirected to its login page. When you log out on your app, it depends how you manage it |
2016-03-14 09:12:01 +0200 | commented question | Keyrock and Spring Security Maybe you can configure the oauth2 library? Or use another one... |
2016-03-14 09:09:45 +0200 | commented question | IdM, Keystone authentication error for both (wilma and steelkin) Which Wilma version are you using? We introduce a patch that fix this issue few days ago. Please, could you update your code and try again? |
2016-02-25 15:34:56 +0200 | received badge | ● Teacher (source) |
2016-02-12 03:21:10 +0200 | answered a question | How to configure Keyrock to access a Restful API behind Wilma Proxy Hi Michele, many thanks for the report. It seems there is a problem in how PEP checks the requests. It should check only the resource and not the parameters. In your case it should check if the user has access to myResource, independently of the parameters. I will fix it ASAP. BR |
2016-02-04 02:48:25 +0200 | answered a question | OAuth 2.0 Vulnerabilities Hi, many thanks for the report. As you can read, the vulnerability is related directly with the protocol and affects clients that are retrieving tokens from more than one AS. By the moment and until the working group proposes a fix, my recommendation is to follow the advise proposed there. BR |
2016-01-27 04:22:55 +0200 | answered a question | KEYROCK AND ANDROID APP INTEGRATION Hi, in Keyrock's documentatio you will find all the gran types accepted in OAuth2: http://fiware-idm.readthedocs.org/en/... You will find a lot of tutorials of how to use OAuth2 in Android applications over the internet. Keyrock fully implements the standard so it will be compatible with it (in fact other users are already using it with Android applications). Don't hesitate to ask any other doubt. BR |
2015-09-25 06:52:21 +0200 | answered a question | IdM user registration for non english users Hi, are you using your own Keyrock instance or the official FIWARE Lab instance? If you are using your own instance you have admin rights so you can use SCIM API to register users from your own server . http://docs.keyrock.apiary.io/#refere... If you are using the running instance in FIWARE Lab, the registration process must be done using its GUI. Regarding the authentication, in both cases you can do the authentication directly from your side (and without the keyrock GUI) using Resource Owner Password Credentials Grant of OAuth2 |
2015-09-21 08:43:33 +0200 | answered a question | Token duration Hi, if you refer to FIWARE Lab environment, the default token duration is 1 hour and cannot be modified. Of course you cannot obtain a token with unlimited expiration time due to security reasons. If you instantiate your own Keyrock instance this parameter is configurable. BR |
2015-09-16 05:34:22 +0200 | commented answer | KeyRock Issue We already support all the methods. Here is the updated documentation: http://fiware-idm.readthedocs.org/en/latest/oauth2/ |
2015-09-16 04:38:17 +0200 | answered a question | Identity Manager, delete application and revoke authorization Hi! There was an issue with some applications. We have just fixed the issue. Many thanks for the feedback |
2015-09-16 03:50:00 +0200 | answered a question | KeyRock & Fiware lab questions Hi, yes there is an API to validate OAuth2 tokens. In fact we provide a component that do the work of protecting your REST API using OAuth2 tokens. It si Wilma PEP Proxy: http://catalogue.fiware.org/enablers/... Regarding your second question, I guess I' already answered you via email :) |
2015-08-07 05:05:40 +0200 | answered a question | KeyRock Issue Hi Sam, I don't fully understand your question. What do you mean with " But we wish to use the esource Owner Password Credentials Grant that keyrock allows to use."? BR |