Stack Overflow
Stack Overflow

Questions tagged [cloudfoundry-uaa]

User Account and Authentication (UAA) is a web service provided by Cloud Foundry to manage users and OAuth2 clients.

The UAA is a multi tenant identity management service, used in Cloud Foundry, but also available as a stand alone OAuth2 server. It's primary role is as an OAuth2 provider, issuing tokens for client applications to use when they act on behalf of Cloud Foundry users. It can also authenticate users with their Cloud Foundry credentials, and can act as an SSO service using those credentials (or others). It has endpoints for managing user accounts and for registering OAuth2 clients, as well as various other management functions.

141 questions
29
votes
1 answer

What's the difference between AWS SSO and AWS Cognito?

Let's say I have a few clients: corporation x, y, z. each of those corporation has their employees and their SSO (mostly SAML but can be also OpenId or anything else). I want to be able to integrate with their SSO so they can log in to my…
piotrek
  • 13,982
  • 13
  • 79
  • 165
16
votes
2 answers

Difference between scope and authority in UAA

In UAA There are two Concepts, Authority and Scope. These concepts seems to overlap. I would like to know exact difference and purpose For example , oauth.login
Yogesh Sajanikar
  • 1,086
  • 7
  • 19
8
votes
4 answers

Refreshing token in Oauth2 Implicit Grant Flow and 3rd party cookies

I wonder how to deal with refreshing token in Oauth2 Implicit grant flow in 2019 when major browsers have 3rd party cookies disabled by default. Some details: Current setup: UI SPA app under ui.example.com Identity Provider (UAA by CloudFoundry)…
akn
  • 3,712
  • 26
  • 43
7
votes
0 answers

java.util.zip.ZipException: invalid block type

When java spring boot application jar is trying to push to cloud(cloudfoundry). getting following exception. Caused by: java.util.ServiceConfigurationError: org.springframework.cloud.CloudConnector: Error reading configuration file at…
Sasidhar
  • 111
  • 1
  • 1
  • 7
7
votes
2 answers

How to tell Grafana using OAuth that some user is admin or belong to some org?

I have CF UAA and try to use it with Grafana 4.0.2 through generic_oauth. I was able to configure login etc. and it works fine. What I'm missing is how to differentiate admin user between others. Also, I would like to differentiate users into…
kkonrad
  • 1,262
  • 13
  • 32
4
votes
0 answers

how to handle exception thrown from org.springframework.security.core.userdetails.User for invalid credentials

I want to trigger an event if there is an invalid credential,in my code it goes to orelsethrow block(trying to achieve account lock).Is it possible to catch the exception thrown from…
Anuradha Neeraje
  • 41
  • 3
4
votes
1 answer

Spring cloud Zuul and JWT refresh token

I have a local orchestrated environment using spring cloud components (eureka, zuul, and an auth servers). These components are all implemented as separate standalone services. I then have a growing number of combined UI/resource services where…
LukeM
  • 83
  • 1
  • 8
4
votes
2 answers

--skip-ssl-validation option not working with uaac in cloud foundry

I have created an instance of the uaac service in cloud foundry and have associated it with one of my application. Now, when I try to target my CLI to the uaac instance I get the following error, $ uaac target failed to access
AnkitG
  • 305
  • 1
  • 4
  • 15
3
votes
2 answers

How to create Spring Cloud gateway filter to add client-credentials access token?

I move from Spring Boot 1.5.20 to Spring Boot 2.1.4. I rewrite my application that was using Zuul and Spring security oauth to Spring cloud gateway and spring-security-oauth2-client. I try to create spring cloud gateway filter to add JWT bearer…
ltlamontagne
  • 31
  • 2
  • 3
3
votes
1 answer

Deploy a Native android app (apk) on Cloud-Foundry

So, I am new to cloud-foundry that's quiet evident by the question title but I tried to search a lot on the internet and could find a lot of distributed information i.e. CF is cloud platform where you can publish your apps (web and mobile), no…
Prateek
  • 3,923
  • 6
  • 41
  • 79
3
votes
2 answers

How to handle session expiry in angular?

I am using spring boot micro service with angular application. And I am using UAA as authorization server. If session expires means the application should show the message in pop up and should redirect to login page. How to achieve this in…
user8030367
  • 81
  • 4
  • 18
3
votes
1 answer

Unable to run Cloudfoundry UAA on local machine

I tried to follow the instructions in https://github.com/cloudfoundry/uaa, namely cloning the github repository and then executing the gradlew run command. I am running this on a Windows 10 system that has Java 1.8 installed. However, I run into the…
user8922978
  • 53
  • 4
3
votes
1 answer

How to enforce v2 bosh manifests?

I understand from experience and the documentation that bosh directors (v257+) do not enforce v2 manifests by default. Moreover, I understand that a team admin cannot update the cloud-config. However, when using a v1 manifest, a team admin can…
ottenwbe
  • 41
  • 4
3
votes
1 answer

Time base user account expiration

We are using CloudFoundry UAA for user authentication and authorization.As i understand, we can set user as active and inactive.But we have a requirement to expire a user account after a given time.How can we achieve time base user account…
Pallavi Ramicetty
  • 35
  • 7
3
votes
1 answer

Why does CF UAA check_token endpoint need a clientId/clientSecret?

CloudFoundry's UAA has a RemoteTokenServices class (part of Spring oauth2 too) that does the authorization token validation by going to the UAA server's check_token endpoint. UAA has sample api and app applications that serve as a resource server…
Márton Sereg
  • 283
  • 2
  • 9
1
2 3
9 10