18 Jun, 2014

2 commits

• e751d758   [OPENIDM-1844] CR-3801 change '_var-' prefix to 'var-' of filtered-query of workflow API ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3416 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  omebold

  2014-06-18 14:21:00 +0000  
• 6c580abf   [IDME-99] CR-3739 port db config updates and sunset taskscanner attribute fix for mysql ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3415 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  omebold

  2014-06-18 14:09:53 +0000  

17 Jun, 2014

2 commits

• 46aa4c62   OPENIDM-1953 - ... Browse Dir »

  Disabling MANAGED_USER auth module for several samples, in favor of PASSTHROUGH to system/ldap/account
  
  Just toggled a boolean config value; no review necessary. Rationale for change:
  
  Previously, we attempted to authenticate using MANAGED_USER first, followed by a few others and then 
  finally PASSTHROUGH. The reason it was first created it this way was so that if there was a fully-
  populated managed/user entry, it would not need to query the remote system. This works fine if you 
  are syncing passwords between managed/user and the remote backend, but as mentioned in OPENIDM-1953, 
  that isn't always the case. To compound this problem, there is also the new function around role 
  calculation; this is per-auth module, and so if you want to calculate roles for a given user you would 
  need to do it for both MANAGED_USER and PASSTHROUGH, if they were both enabled. This redundancy is 
  annoying and a likely source of confusion. So, this change is to just disable the MANAGED_USER auth 
  module, and always use the PASSTHROUGH config.
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3404 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-06-17 18:52:48 +0000  
• 958b858f   update main sample README - reviewed by Lana over Skype ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3401 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  laurent.bristiel

  2014-06-17 13:41:52 +0000  

12 Jun, 2014

2 commits

• cf23d63b   we are talking about sample5b here ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3384 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  laurent.bristiel

  2014-06-12 13:43:39 +0000  
• 01ed9b94   mail properties don't take underscore anymore ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3383 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  laurent.bristiel

  2014-06-12 13:11:10 +0000  

11 Jun, 2014

1 commit

• c1ebd604   [IDME-23] CR-3514 (password change usecase sample) minor changes based on the CR ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3369 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  omebold

  2014-06-11 14:54:25 +0000  

09 Jun, 2014

1 commit

• 2be83abd   OPENIDM-1520 Compromised Root CA in truststore ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3347 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  cgdrake

  2014-06-09 17:14:23 +0000  

04 Jun, 2014

3 commits

• 410415c6   OpenIDM-1808 CR-3662 Fakead livesync for sample 6 was not working. ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3325 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jason

  2014-06-04 20:04:10 +0000  
• 16663d22   http://sources.forgerock.org/cru/CR-3675 - OpenIDM updates for H2 ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3319 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-06-04 14:32:23 +0000  
• 4974bfe5   this comment is included in the Groovy script but is also relevant for Javascript one ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3315 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  laurent.bristiel

  2014-06-04 11:46:43 +0000  

03 Jun, 2014

3 commits

• 91045dc1   OPENIDM-1773 (CR-3649) ... Browse Dir »

  Update custom endpoint samples.
  
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3311 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  brmiller

  2014-06-03 20:14:42 +0000  
• 76d27dd8   CR-3661 ... Browse Dir »

  Deprecate external/email input parameters use of underscores for post-body keys.
  Still supported as fallback.
  
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3309 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  brmiller

  2014-06-03 19:05:49 +0000  
• efb06f8b   [CR-3651][OPENIDM-1802] Fixed scan-task query. ... Browse Dir »

  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3307 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  alin

  2014-06-03 18:10:15 +0000  

02 Jun, 2014

2 commits

• c1022e7a   CR-3654 - OPENIDM-1896 - Renaming passthroughAuthnPopulateContext.js to populateAsManagedUser.js ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3298 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-06-02 18:06:00 +0000  
• 4d4358e2   fix typo ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3293 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  laurent.bristiel

  2014-06-02 09:21:24 +0000  

30 May, 2014

1 commit

• 4a0f23c3   OPENIDM-1708 (CR-3633) ... Browse Dir »

  Support reauth for any auth module configured in authentication.json.
   * AuthenticationService now handles requests on /authentication, replaciing
     AuthFilter which was not a filter, and did not fully handle reauth.
   * Authenticators are used from both JASPI auth modules and AuthenticationService
     to provide the authentication--either with Http headers in the case of the 
     auth modules, or from the authcid in the HttpContext and the reauth header 
     in the case of reauthentication.
   * AuthenticationService now satisfies the AuthenticationConfig service for 
     the purposes of OSGiAuthFilterBuilder's access to the config to build the 
     JASPI CAF.
   * The duplicative managed/user config at the top of the sample authentication.json 
     files are now removed, thus satisfying OPENIDM-1781.
  
  
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3282 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  brmiller

  2014-05-30 05:25:15 +0000  

29 May, 2014

1 commit

• 79b3d62f   Removing obsolete openam sample ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3278 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-29 23:21:07 +0000  

28 May, 2014

1 commit

• 4cf60cc3   CR-3626 - OPENIDM-1876 - Various samples not syncing password properly ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3268 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-28 15:25:16 +0000  

27 May, 2014

3 commits

• 442836e6   OPENIDM-1762 (CR-3586) ... Browse Dir »

  Additional decoupling of auth module role calculation and security context 
  population from auth module validation code.  Notably:
  
   * factor out basic auth code to allow PassthroughModule to support both basic auth and X-OpenIDM- header auth.
   * remove IWAPassthroughModule in favor of using auth module configuration to control order of execution
   * separate client cert auth into its own module, supporting an list of "allowedAuthenticationIdPatterns" 
     to compare against the subject DN
   * remove static dependency on OSGIAuthnFilterBuilder for injection of OSGi artifacts - improves testability
  
  
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3261 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  brmiller

  2014-05-27 15:46:41 +0000  
• 6a4f6c24   there now is generic support to put additional properties inside the script obje… ... Browse Dir »

  …ct - reviewed by Andi via Skype
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3260 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  laurent.bristiel

  2014-05-27 15:12:27 +0000  
• bafbf80b   Fix some typos in the README ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3253 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  Lana

  2014-05-27 08:22:08 +0000  

26 May, 2014

1 commit

• 2ffbdc1d   typos ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3251 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  laurent.bristiel

  2014-05-26 15:57:55 +0000  

23 May, 2014

2 commits

• d5ef8ea3   CR-3554 - OPENIDM-1849 - MySQL stored procedures and allowed values for get-by-field-value ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3250 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-23 22:06:27 +0000  
• 2cdff471   OPENIDM-1861 (reviewed by Mike via skype) ... Browse Dir »

  Update "make LDAP unavailable" instruction to rename file as chmod may not be
  sufficient for root-running openidm.
  
  
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3249 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  brmiller

  2014-05-23 21:19:37 +0000  

22 May, 2014

1 commit

• 87b03c6f   OPENIDM-1861 (CR-3591) ... Browse Dir »

  Add sample5b to demonstrate all-or-nothing compensation support.
  
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3242 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  brmiller

  2014-05-22 19:40:11 +0000  

21 May, 2014

1 commit

• fb0e0e78   Updating reference for scriptedsql connector to -RC1 instead of -SNAPSHOT ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3230 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-21 15:31:19 +0000  

14 May, 2014

4 commits

• 46984f52   Removing transform script for a few samples, which was attempting to decrypt pas… ... Browse Dir »

  …sword values. This is no longer necessary, as encrypted values
  are now being automatically decrypted as part of a sync.
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3210 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-14 23:37:28 +0000  
• 05f5ba20   CR-3487 IDME-99 Implement CREST pagination for managed objects. ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3209 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jim.mitchener

  2014-05-14 20:01:21 +0000  
• 345196d4   OPENIDM-1735 / OPENIDM-1134 (CR-3503) ... Browse Dir »

  Provide additional detail on sync failures from managed object CRUD operations.
  Provide example compensation script to compensate for sync failures.
  
  
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3207 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  brmiller

  2014-05-14 19:36:42 +0000  
• e35c3de6   [IDME-23] [CR-3514] password change reminder workflow ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3200 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  omebold

  2014-05-14 12:31:09 +0000  

12 May, 2014

3 commits

• afb4df84   CAF-93/CAF-103 - Reverting file changes made for testing ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3172 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  phillcunnington

  2014-05-12 14:47:20 +0000  
• 61347cf3   CF-2495 - CAF-93/CAF-103 - Session integration with OpenAM via common session module ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3171 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  phillcunnington

  2014-05-12 14:13:46 +0000  
• 594d2a29   [IDME-202] [CR-3475] usecase sample fixes (named query, repo config, README update) ... Browse Dir »

  git-svn-id: https://svn.forgerock.org/openidm/trunk@3170 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  omebold

  2014-05-12 12:27:18 +0000  

08 May, 2014

1 commit

• 3139c03a   CR-3490 - OPENIDM-1801 - audit-sample not working anymore ... Browse Dir »

  This doesn't get the audit-sample working yet, there are other issues (as noted in OPENIDM-1801) that still need to be resolved
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3163 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-08 14:45:18 +0000  

07 May, 2014

1 commit

• 7876eb5d   Removing accidental commit of workflow/triggerWorkflowFromSync.js.js; now it's w… ... Browse Dir »

  …orkflow/triggerWorkflowFromSync.js
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3158 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-07 20:51:44 +0000  

05 May, 2014

1 commit

• 02fe44b7   Changing the name of "workflow/asyncProcess.js" to "triggerWorkflowFromSync.js" ... Browse Dir »

  ref: http://sources.forgerock.org/cru/CR-3415#c26436
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3154 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-05 22:49:37 +0000  

02 May, 2014

1 commit

• a48457fc   http://sources.forgerock.org/cru/CR-3415#CFR-78646 ... Browse Dir »

  README for provisioners folder, describing where each is used in the samples
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3150 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-02 00:11:29 +0000  

01 May, 2014

1 commit

• d9baca5e   Renamed provisioner to make it clear that it is different than the default one w… ... Browse Dir »

  …e have under "provisioners/".
  Ref: http://sources.forgerock.org/cru/CR-3415#c26314
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3148 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  jake.feasel

  2014-05-01 23:33:46 +0000  

28 Apr, 2014

1 commit

• 7f9f9bde   change for support of MySQL in the bridge, adding indexes on roles column(explic… ... Browse Dir »

  …it) and propvalue(generic) for speeding up the "get-users-of-direct-role" query, and requested upgrades to repo.*.json files related to IB-908
  
  git-svn-id: https://svn.forgerock.org/openidm/trunk@3140 d98387aa-ee2c-4292-a9e6-504d2a719fd3

  huck.elliott

  2014-04-28 17:36:21 +0000