I am new to security domain, so don't know whether this question is valid to be asked here. I am currently using OpenAM for the security of my web application with J2ee agent, now I find that OpenAM can do authorization with OAUTH as well as on the basis policies defined, now both openam and oauth develops tokens for valid users, and do not share user credential with the application, so how different are the two? My second question is if my application does not support oauth like google and facebook what basic things I need to do to implement oauth into my application.
Difference between OAUTH authorization and OpenAM authorization
2k views Asked by Phalguni At
1
There are 1 answers
Related Questions in OAUTH
- Lambda endpoint for the Google OAuth callback does not recieve the access_token
- Miro oauth api throws error 401 Invalid authorization code
- Error from Identity Provider - OIDC Scope Error
- get refresh token in axios interceptor
- How would single sign-on work for my multi-tenant application?
- How to get OAuth2 Access token from Postman
- How to use Oauth in order to log‑in on .googleapis.com on almost any arbitrary endpoints domains from the web browser?
- How to fix common 500 internal server error when use POST method on NEXTJS
- How to use a different account for OAuth with dbt-core and profiles.yml?
- ASP.NET Core Google external login issue
- Implementing IDP Initiated Flow Using OIDC
- Migration of UseOAuthAuthorizationServer from .Net Framework to .Net8
- Django Allauth Bad Request Error, Error Retrieving Access Token: Invalid Grant
- angular oauth 2 oidc doesn't work with github idp
- Handling oauth in flutter app without browser
Related Questions in OPENAM
- OpenAM Community Edition with Vue SPA / CORS Settings
- Can we extend OPENAM session time by a specific time period?
- Websphere liberty - how to disable user credentials pop-up for basic registry credentials
- Unknown objectclass inetadmin when trying to create user in opendj through openam
- How to Downgrade ForgeRock AM from 720 to 653
- Failed to configure ForgeRock openAM deployment
- Traefik Proxy update response cookies SameSite to None
- how can i connect openam7 with mysql in ubuntu 22.04
- How to install high availability of OpenAM version 14
- Setting Client_Secret white fetching tokens using ForgeRock Javascript SDK
- How to I add validation for user not present in the database after open AM Authentication
- Facing an Forgerock object execption in OpenDJ Reset password with OPenAM
- Have to decrpt a SHA1 password to Forgerock OpenIDM
- ForgeRock OpenAM 5.5 Sign-in Sticky Session
- Authentication and getting attributes using componentspace SAML library with ForgeRock backend in .NET core
Related Questions in OPENSSO
- OpenAM Web Agent Redirect Issue #403x
- Can we have two entries in AMConfig.properties for `com.iplanet.am.server.host`?
- OpenAm how to redirect to template in callback (proceess method)
- Domino SAML Login - access secured resources through API
- How to parse OpenAM XACML using JVM?
- Get resource list from OpenAM
- Where to save user quota data? In LDAP or RDBMS?
- Changing LDAP datastore config from OpenAM SDK
- How to create a user in OpenAM with create realm privilege?
- How to configure Oracle OpenSSO Fedlet with multiple service providers in ASP.Net?
- How to setup IDP from scratch using opensso library?
- SAML 2.0 TO OAUTH
- Why is kerberos commonly used with Openam?
- Does OPENAM support SHA-256 encryption
- Opensso support for Apache 2.4 and Tomcat 7+
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
OpenAM supports OAuth based authorization if that is what your confusion is about. It also supports
1) OpenID Connect 2) SAML
Your application can use either of these to get authorization from OpenAM. Your application can also use the REST APIs for this purpose. The choice is yours.
As far as the tokens go, OAuth tokens are different from OpenAM Tokens. OAuth tokens include
1) refresh_token 2) access_token
The access_token is used for making oauth based calls. However, OpenAM tokens are basically what is there in the cookie or what you get via the REST API.
Regarding your second question, to support OAuth, you would need to use a oauth client library and enable oauth on the server side (in this case OpenAM). This client library would be dependent on the language you choose to write this application.