UMA protection in SCIM Web API

By: Bernardo Santos user 06 Mar 2019 at 3:50 a.m. CST

3 Responses
Bernardo Santos gravatar
Hello, I'm facing another issue while trying to use the SCIM Web API: - after I've successfully obtain an access token from oxauth, I'm trying to query the users list to see if one exists. However, even by following the [tutorial](https://gluu.org/docs/ce/user-management/scim2/#raw-http-requests), it seems that I'm obtaining a "401 Unauthorized" seconds after a token was retrieved and used with the premise "Bearer". From the response headers I've retrieved the following: ``` WWW-Authenticate →UMA realm="Authorization required", host_id="my-idp-host", as_uri=https://my-idp-host/.well-known/uma2-configuration, ticket=b61b00d8-ac84-4f74-b9aa-f7c640ae44d7 ``` Since I have UMA protection enabled, is there an extra step that I should be taking before performing any other request? Once again, thanks for all the help, best regards,
Ubuntu 16.0
closed

Answers

By Mohammad Abudayyeh staff 06 Mar 2019 at 4:03 a.m. CST

Copy
Mohammad Abudayyeh gravatar
Hi Bernardo, We will follow with you soon.

By Jose Gonzalez staff 06 Mar 2019 at 6:10 a.m. CST

Copy
Jose Gonzalez gravatar
Hi, The small tutorial you are following is for test mode. You wouldn't like using command line style for UMA since it is sort of elaborated. The only official way to play with UMA is with the Java client. See more info [here](https://gluu.org/docs/ce/user-management/scim2/#using-a-different-programming-language).

By Bernardo Santos user 06 Mar 2019 at 6:17 a.m. CST

Copy
Bernardo Santos gravatar
Hello, thank you for the heads up! I was trying to have something a bit more generic, but since I would prefer to have UMA enabled, I'll stick with the client. Thanks again, best regards,

Post an answer