Introduction IDCS is used by enterprises and organizations to allow secure access to their applications. IDCS uses various open standards such as OAuth 2.0,...
Introduction IDCS is used by enterprises and organizations to allow secure access to their applications. IDCS uses various open standards such as OAuth 2.0, SAML etc. to protect these applications. One of the many features of IDCS is to facilitate client applications accessing backend (REST) APIs using OAuth 2.0 (https://tools.ietf.org/html/rfc6749). Client applications come in different flavors - traditional web applications hosted on a web server to JavaScript running on...
Introduction IDCS is used by enterprises and organizations to allow secure access to their applications. IDCS uses various open standards such as OAuth 2.0, SAML etc. to protect these applications. ...
Introduction As you may know IDCS can operate as both a SAML IdP and a SAML SP at the same time - a use case known as an IdP Proxy or IdP Chaining. This is...
Introduction As you may know IDCS can operate as both a SAML IdP and a SAML SP at the same time - a use case known as an IdP Proxy or IdP Chaining. This is useful in a bunch of situations, but the most common is when you want users to login to your on premises Identity Provider (e.g. OAM) using their current credentials and then freely access a bunch of stuff in Oracle's Public Cloud (OPC) without setting up a bunch of point-to-point agreements between your IdP and each of...
Introduction As you may know IDCS can operate as both a SAML IdP and a SAML SP at the same time - a use case known as an IdP Proxy or IdP Chaining. This is useful in a bunch of situations, but...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access Token from Identity Cloud Service in order to successfully be authorized to send REST API requests. Then in Part 2: Using Postman Runner with Identity Cloud Service I built on this Pre-request script to enhance the script to get data from a CSV that would play a role in using Collection Runner, and in addition brought in...
Introduction In Part 1: Automate getting an Identity Cloud Service Access Token in Postman I covered using a Pre-request script to automate getting an Access Token from Identity Cloud Service in order...
Introduction In the last article, Part 1: Automate getting an Identity Cloud Service Access Token in Postman, I explained how using a Pre-request Script can...
Introduction In the last article, Part 1: Automate getting an Identity Cloud Service Access Token in Postman, I explained how using a Pre-request Script can automate getting an access token so when a request is sent to Identity Cloud Service it just works, a big time saver. In this article I am going build on using that Pre-request script and add Tests scripts in a way that we can chain requests in a collection and automate all the requests at once using Postman Collection...
Introduction In the last article, Part 1: Automate getting an Identity Cloud Service Access Token in Postman, I explained how using a Pre-request Script can automate getting an access token so when a...
Introduction If you have spent enough time working with web services you have probably heard of Postman. If not, then let me say it is a great tool to test REST...
Introduction If you have spent enough time working with web services you have probably heard of Postman. If not, then let me say it is a great tool to test REST APIs against Identity Cloud Service (IDCS) among other things. When using Postman with web services you quickly learn an OAuth2 Access Token is required in order to successfully be authorized to complete a REST call. Each time a request is sent you can either manually request an Access Token setting the Authorization...
Introduction If you have spent enough time working with web services you have probably heard of Postman. If not, then let me say it is a great tool to test REST APIs against Identity Cloud Service...
Introduction The Oracle GoldenGate (OGG) Passive-Alias Extract may be used for data replication between source databases located on servers in untrusted...
Introduction The Oracle GoldenGate (OGG) Passive-Alias Extract may be used for data replication between source databases located on servers in untrusted security zones and target database servers in trusted security zones. In this article we'll configure Alias Extracts on a trusted zone OGG instance that will interact with Passive Extracts on untrusted zone OGG instances for data capture and delivery to the trusted zone database server. The concepts, scripts, and information...
Introduction The Oracle GoldenGate (OGG) Passive-Alias Extract may be used for data replication between source databases located on servers in untrusted security zones and target database servers...
One of the responsibilities of Oracle Identity Cloud Service (IDCS) is to serve as an OAuth 2.0 Authorization Server. As an Authorization Server, IDCS issues...
One of the responsibilities of Oracle Identity Cloud Service (IDCS) is to serve as an OAuth 2.0 Authorization Server. As an Authorization Server, IDCS issues access and refresh tokens to OAuth Clients. OAuth Clients use these tokens to access various resources on Resource Servers on-behalf of Resource Owners. OAuth Clients are things like web or mobile applications and Resource Owners are users who use those applications for various purposes. This goal of this article is to...
One of the responsibilities of Oracle Identity Cloud Service (IDCS) is to serve as an OAuth 2.0 Authorization Server. As an Authorization Server, IDCS issues access and refresh tokens to OAuth...
Introduction This blog provides steps to configure SSL certificate in Oracle API Gateway node's trust store. It becomes necessary when API gateway in installed...
Introduction This blog provides steps to configure SSL certificate in Oracle API Gateway node's trust store. It becomes necessary when API gateway in installed in "production" mode. Without SSL certificate you won't able to deploy an API to gateway node, because in production mode gateway must communicate with APIP management tier over SSL. Another use-case is when backend service is SSL enabled. We will discuss both the scenarios in this blog. 1. Configure certificate in...
Introduction This blog provides steps to configure SSL certificate in Oracle API Gateway node's trust store. It becomes necessary when API gateway in installed in "production" mode. Without...
Introduction Identity Cloud Services (IDCS) 18.2.4 introduced an all new authentication API that allows customers to build their own login application. Those...
Introduction Identity Cloud Services (IDCS) 18.2.4 introduced an all new authentication API that allows customers to build their own login application. Those new APIs allow you to do username and password authentication, federation, social login and multi factor authentication. The API is implemented as a state machine that steps through the initial authentication and then proceeds through Multi-factor Authentication (MFA) if needed. The state machine also handles enrolling...
Introduction Identity Cloud Services (IDCS) 18.2.4 introduced an all new authentication API that allows customers to build their own login application. Those new APIs allow you to do username...
