Identity Management Blog

This video demonstrates how to configure OpenAM for multi-step authentication and then execute that authentication chain via the RESTful API. A basic web application is used to showcase the execution of the authentication chain, as well as the results returned from OpenAM's RESTful API.
Read More
Today's video shows you how to use the power of OpenIDM and REST by adding custom endpoints to provide easily accessible information to your Identity-related applications. This demo gives you the outline of how endpoints are created and how they can provide valuable data via REST API in a few minutes.
This is a simple demo showing a mobile application, in this case running in an iPhone simulator, interacting with ForgeRock OpenAM 12.0 REST API's.  A basic session token interaction is demonstrated along with demonstration and discussion on how authorization decisions (should the user be able to do this within this mobile app) could be delegated to OpenAM's policy engine and accessed via REST ...
You have followed the high-level plan “How Do I Get Started Building an Identity API” and at this point have a solid Identity API with initial success from your pilot users. But all the work that went into getting this far doesn’t matter if it never moves beyond this point. Evangelizing and marketing your Identity API is critical to ensure continued adoption and long-term value, you need to have ...
You have read “Do I Need an Identity API” and decided it makes sense to undertake a small, focused, Proof of Concept (POC) effort with an internal customer or business partner that has the developer resources and desire to work with you. So how do you get started?
There is a lot of talk today about the API Economy. The vision of a vast universe of distributed business services that can be knit together on the fly to fulfill a broader business purpose is slowly but surely moving towards reality. In our world, this translates into APIs that can help facilitate Identity and Access Management (IAM) functions. This is the first of a short series of posts that ...
Anyone following me on Twitter is well aware of my stance on AddressBookGate. While the tech world's initial outrage was being directed at Path, I felt that a more balanced conversation would also lay some culpability at the feet of Apple and other API platforms that were exposing data to applications like Path without any controls in the first place.