By: Carl Buxbaum user 11 Aug 2016 at 3:16 p.m. CDT

1 Response

Hi, We are using the SCiM libraries to provision/update users in Gluu. I have a couple of questions: I assume that the scim-rp-openid-keys.json file is essentially our credentials. The private portion of the key is the password? If so, is there a standard mechanism for protecting that? If no, I am guessing that we should have it encrypted on our file system. If we want to change the key, or specify a particular password and generate a new file, how do we go about doing that? Thanks, Carl

U1404

closed

By Valentino Pecaoco user 12 Aug 2016 at 12:59 a.m. CDT

Copy

Hi Carl, Currently I can't think of straight functionality in the Gluu server that can fulfill these stuff. `scim-rp-openid-keys.json` is intended to be utilized by `SCIM-Client` which is tied to a pre-registered RP client. Maybe you can encrypt/decrypt `scim-rp-openid-keys.json` to your own needs with which you are welcome to try. Regards, Val

You need to Login in order to post an answer

Protecting SCiM resources

By: Carl Buxbaum user 11 Aug 2016 at 3:16 p.m. CDT

Answers

By Valentino Pecaoco user 12 Aug 2016 at 12:59 a.m. CDT

Post an answer