jfischerkt Absent Member.
Absent Member.

Header Injection using Oauth

We're exploring using Oauth in our environment. Currently using contracts as our Authentication Procedure. After a user has logged in with the contract we're using identity injection policies to pull attributes from the LDAP user store and injecting those into our headers. When we switch to using an Oauth Token for our Authentication Procedure those attributes continue to get injected, however they are blank. Is there still a way for us to grab those attributes from the LDAP user store and inject them into our headers?
1 Reply
Micro Focus Contributor
Micro Focus Contributor

Re: Header Injection using Oauth

If the attributes are fetched in the request properly then doing Form Fill Injection Method can be applied for this application .
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.