-
Type:
Feature Request
-
Status: Open
-
Priority:
Minor
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: None
-
Component/s: Application Security
-
Labels:None
Current Status
In our latest iteration of our OpenSSO connector, we permit the use of OpenAM 12 and OpenAM 13, but not for ForgeRock Access Management 6.
Analysis
While ForgeRock Access Management 6 uses many of the similar functionalities with OpenAM 13, the API definitions are a bit different – search for action=validate:
1) OpenAM13: https://backstage.forgerock.com/docs/openam/13/dev-guide/#rest-api-tokens
2) ForgeRock Access Management: https://backstage.forgerock.com/docs/am/6/authentication-guide/#rest-api-token-validation
Basically, it seems that ForgeRock Access Management includes some additional information for the authentication process.
Request
Since our enterprise subscribers may also be using other enterprise grade products in addition to Liferay, I would like to request the addition of other SSO solutions such as ForgeRock Access Management