6525036 Super Contributor.
Super Contributor.
294 views

get clientid and secret

Hello everybody,

I am VERY new to all this exciting Oauth stuff, so bear with me.

I need to get a clientId and secret from the IG server, so I can do great stuff.

Can anyone tell me how to go about that.

In this instance it is IG35 and OAuth is on the same box as IG.
Tags (1)
0 Likes
5 Replies
Knowledge Partner
Knowledge Partner

Re: get clientid and secret

On 5/27/2019 5:24 PM, 6525036 wrote:
>
> Hello everybody,
>
> I am VERY new to all this exciting Oauth stuff, so bear with me.
>
> I need to get a clientId and secret from the IG server, so I can do
> great stuff.
>
> Can anyone tell me how to go about that.
>
> In this instance it is IG35 and OAuth is on the same box as IG.


You can set it, but I do not think you can recover the value. It is
stored in a salted hash, which I think ought not to be recoverable.

Use configutil.sh and you can reset the values of the OAuth secrets for
each of the various services.

Client is cx, server is iac, I think.


0 Likes
6525036 Super Contributor.
Super Contributor.

Re: get clientid and secret

Hey Geoffrey,

Thanks for the response.

Perhaps it would be best if I gave some context as to why I asked the question.
In IG, under Fulfillment, we can choose "Identity Manager workflow (system)" as fulfiller. Here we can download "Fulfillment samples", the samples consist of both a workflow and some GCVs for the UA Driver.

Those GCVs are

com.netiq.iac.url : Which I belive is the URL to to IG server (like http://iga01.smoothnes.dk:8080 )
com.netiq.iac.wf_server.clientID which in the example contains the valude "wf"
com.netiq.iac.wf_server.clientPass : Which I guess is the OSP secret (I was able to start the workflow with that value)
com.netiq.iac.authserver.url.authorize url to http://iga01.smoothnes.dk:8080/osp/a/idm/auth/oauth2/grant

What I am trying to figure out is, what to write in the com.netiq.iac.wf_server.clientID, currently the value "wf" does not seem to be correct (I get a 401 error in the rest activities in the workflow)

So, I suspect that I have to enter something sane in that GCV, and my guess is that I needed a clientID.

But what are the exact steps of getting such an id?
0 Likes
Knowledge Partner
Knowledge Partner

Re: get clientid and secret

On 5/28/2019 4:56 AM, 6525036 wrote:
>
> Hey Geoffrey,
>
> Thanks for the response.
>
> Perhaps it would be best if I gave some context as to why I asked the
> question.
> In IG, under Fulfillment, we can choose "Identity Manager workflow
> (system)" as fulfiller. Here we can download "Fulfillment samples", the
> samples consist of both a workflow and some GCVs for the UA Driver.
>
> Those GCVs are
>
> com.netiq.iac.url : Which I belive is the URL to to IG server (like
> http://iga01.smoothnes.dk:8080 )
> com.netiq.iac.wf_server.clientID which in the example contains the
> valude "wf"
> com.netiq.iac.wf_server.clientPass : Which I guess is the OSP secret (I
> was able to start the workflow with that value)
> com.netiq.iac.authserver.url.authorize url to
> http://iga01.smoothnes.dk:8080/osp/a/idm/auth/oauth2/grant
>
> What I am trying to figure out is, what to write in the
> com.netiq.iac.wf_server.clientID, currently the value "wf" does not seem
> to be correct (I get a 401 error in the rest activities in the
> workflow)
>
> So, I suspect that I have to enter something sane in that GCV, and my
> guess is that I needed a clientID.
>
> But what are the exact steps of getting such an id?


the wf client id is set in configutil.sh as I suggested. Go set it
there, and set it in the UA Driver.


0 Likes
6525036 Super Contributor.
Super Contributor.

Re: get clientid and secret

Thank you. I will try that, and see if it helps
0 Likes
Knowledge Partner
Knowledge Partner

Re: get clientid and secret

On 5/30/2019 4:34 PM, 6525036 wrote:
>
> Thank you. I will try that, and see if it helps


one confusing thing is, it seems like both sides need to agree on the
password. In this case the value written by configutil.sh is read from
the DB by both sides of the equation so it works.


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.