Introduction Oracle IDCS (Identity Cloud Service) supports restricting access to applications based on the user IP address. Such applications can be the IDCS...
Introduction Oracle IDCS (Identity Cloud Service) supports restricting access to applications based on the user IP address. Such applications can be the IDCS Console or any application registered by customers in IDCS. At first sight, restricting access based on the user IP address may lead to the belief that IDCS can only blacklist a set of IP addresses. In other words, IDCS would only be able to block access from a set of well known IP addresses. That's far from the truth....
Introduction Oracle IDCS (Identity Cloud Service) supports restricting access to applications based on the user IP address. Such applications can be the IDCS Console or any application registered by...
For other A-Team articles by Richard, click here Introduction Customers may want to restrict access to their Oracle Cloud Services to a set of IP ranges, for...
For other A-Team articles by Richard, click here Introduction Customers may want to restrict access to their Oracle Cloud Services to a set of IP ranges, for instance to only allow connections coming from their corporate office. That type of restriction is not possible within Oracle Analytics Cloud itself, but it possible to set up using the Identity Cloud Service. This functionality requires the 'Foundation' level for Identity Cloud Service. For more information on the...
For other A-Team articles by Richard, click here Introduction Customers may want to restrict access to their Oracle Cloud Services to a set of IP ranges, for instance to only allow connections coming...
As businesses move to the cloud there is a high demand for securing/protecting their HTTP resources from unauthorized access. There are several approaches to...
As businesses move to the cloud there is a high demand for securing/protecting their HTTP resources from unauthorized access. There are several approaches to protecting these resources which include SAML for SOAP service, OAuth for REST services, HTTP basic for both, and sometimes home grown proprietary mechanisms. It may not be widely known yet, but all Oracle Integration Cloud (OIC) REST endpoints are OAuth protected and can be triggered from a client using OAuth 2.0...
As businesses move to the cloud there is a high demand for securing/protecting their HTTP resources from unauthorized access. There are several approaches to protecting these resources which include...
Introduction If you've been on the internet recently you've probably used OAuth and more specifically the "Authorization Code" grant type (or "AZ Code" if, like...
Introduction If you've been on the internet recently you've probably used OAuth and more specifically the "Authorization Code" grant type (or "AZ Code" if, like The Dude, you are into the whole brevity thing). For example if you've ever clicked a "Sign on with Facebook" button or used a Facebook app you've used OAuth's AZ Code grant type, which is sometimes called a "flow", to allow the site or app to get your identity from Facebook and possibly call Facebook back to get more...
Introduction If you've been on the internet recently you've probably used OAuth and more specifically the "Authorization Code" grant type (or "AZ Code" if, like The Dude, you are into the...
Introduction Nowadays OAuth is the method of choice to authorize access to Cloud resources for third-party systems. There are several ways how to define trust...
Introduction Nowadays OAuth is the method of choice to authorize access to Cloud resources for third-party systems. There are several ways how to define trust between systems and getting a valid access token. This blog talks about the most common ways for Oracle Fusion Cloud Applications (hereinafter referred to in this article as "Fusion Apps") to do that. Main Article There are many different OAuth flows, but all of them get you in the end an OAuth access token. The OAuth...
Introduction Nowadays OAuth is the method of choice to authorize access to Cloud resources for third-party systems. There are several ways how to define trust between systems and getting a valid...
Introduction The notion of a user is the most common reason for misunderstanding and confusion. When we mention a user, we often think of the person who is...
Introduction The notion of a user is the most common reason for misunderstanding and confusion. When we mention a user, we often think of the person who is allowed to use an application. However, nearly every application has a different user structure implemented. The challenge is to find a common ground for these differing user structures and a way to provision them, i.e. push the user information, into the applications. In today's connected and integrated world, enterprises...
Introduction The notion of a user is the most common reason for misunderstanding and confusion. When we mention a user, we often think of the person who is allowed to use an application....
Introduction IDCS is used by enterprises and organizations to allow secure access to their applications. IDCS uses various open standards such as OAuth 2.0,...
Introduction IDCS is used by enterprises and organizations to allow secure access to their applications. IDCS uses various open standards such as OAuth 2.0, SAML etc. to protect these applications. One of the many features of IDCS is to facilitate client applications accessing backend (REST) APIs using OAuth 2.0 (https://tools.ietf.org/html/rfc6749). Client applications come in different flavors - traditional web applications hosted on a web server to JavaScript running on...
Introduction IDCS is used by enterprises and organizations to allow secure access to their applications. IDCS uses various open standards such as OAuth 2.0, SAML etc. to protect these applications. ...
Introduction As you may know IDCS can operate as both a SAML IdP and a SAML SP at the same time - a use case known as an IdP Proxy or IdP Chaining. This is...
Introduction As you may know IDCS can operate as both a SAML IdP and a SAML SP at the same time - a use case known as an IdP Proxy or IdP Chaining. This is useful in a bunch of situations, but the most common is when you want users to login to your on premises Identity Provider (e.g. OAM) using their current credentials and then freely access a bunch of stuff in Oracle's Public Cloud (OPC) without setting up a bunch of point-to-point agreements between your IdP and each of...
Introduction As you may know IDCS can operate as both a SAML IdP and a SAML SP at the same time - a use case known as an IdP Proxy or IdP Chaining. This is useful in a bunch of situations, but...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access Token from Identity Cloud Service in order to successfully be authorized to send REST API requests. Then in Part 2: Using Postman Runner with Identity Cloud Service I built on this Pre-request script to enhance the script to get data from a CSV that would play a role in using Collection Runner, and in addition brought in...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access Token from Identity Cloud Service in order...
