Stack Overflow
Stack Overflow

Questions tagged [cloudfoundry-uaa]

User Account and Authentication (UAA) is a web service provided by Cloud Foundry to manage users and OAuth2 clients.

The UAA is a multi tenant identity management service, used in Cloud Foundry, but also available as a stand alone OAuth2 server. It's primary role is as an OAuth2 provider, issuing tokens for client applications to use when they act on behalf of Cloud Foundry users. It can also authenticate users with their Cloud Foundry credentials, and can act as an SSO service using those credentials (or others). It has endpoints for managing user accounts and for registering OAuth2 clients, as well as various other management functions.

141 questions
1
vote
1 answer

Could not resolve placeholder 'login.serviceProviderKey' when deploying uaa to tomcat

I have created a uaa war by following these steps: $ git clone git://github.com/cloudfoundry/uaa.git $ cd uaa $ ./gradlew :cloudfoundry-identity-uaa:war When i deploy the war to tomcat i am getting the following exception [2017-04-19 15:24:20.797]…
user2727192
  • 23
  • 3
1
vote
1 answer

How to customize the spring UAA login form?

I was working on a setup of UAA server based on spring UAA with a war file deployed to a tomcat 8 container, the war file(cloudfoundry-identity-uaa-3.10.0.war) was downloaded from Maven repo. However the OOTB login form with cloud foundry logo and…
Bo Hu
  • 31
  • 5
1
vote
1 answer

How does one extend the User model on cloudfroundry UAA

We are currently evaluating using Cloud Foundry UAA as an OAuth 2.0 authorization server and I have not been able to find any documentation around how to extend the user model. I see that UAA leverages SCIM, which is itself extensible, but how does…
user1048378
  • 305
  • 1
  • 2
  • 8
1
vote
1 answer

Automate fly login if the team is backed by UAAC

How does one automate the fly login if the team is backed by uaa? Currently the fly cli kicks out a login link that you have to manually open in a separate browser window. Something more elegant for that would be preferred.
John Dee
  • 11
  • 1
1
vote
1 answer

PWS - Unable to connect UAA to database

I am having an issue on Pivotal Web Services where I am unable to get a connection to the Postgres SQL database for UAA. I have the service defined and bound to the application, but am putting the credentials in manually (Not sure if param…
StylePotato
  • 167
  • 1
  • 13
1
vote
2 answers

How to operate pivotal cloud foundry opsman though java RESTful

I'm now using pivotol's cloud foundry and I'm thinking a java app to automatically check & upgrade products on pcf ops-manager. Right now I'm typing things like "$ uaac curl -k https://****.org/api/v0/diagnostic_report" on command line to manually…
Bruce Shu
  • 11
  • 1
1
vote
1 answer

Team permissions with UAA and BOSH

I have a Bosh Directory connected to UAA. What I want to do is restrict the access to the Director for teams that should have access only to their releases. Therefore I want to use the Teams in UAA. Now I have the following problem with UAA and…
Michael Lihs
  • 7,460
  • 17
  • 52
  • 85
1
vote
1 answer

Placeholders within UAA_CONFIG_YAML environment variable

I'm trying to set the SMTP settings within the UAA_CONFIG_YAML section of the manifest. smtp: host: ${vcap.services.smtpdev.credentials.hostname:localhost} port: 2525 user: ${vcap.services.smtpdev.credentials.username:user} password:…
miclip
  • 11
  • 1
1
vote
2 answers

Auto Assign Space and Org to new CF Users

we have a cloud foundry demo installation for customers. Customers are able to create an account. Now, I would like t assign automatically a specific org and space incl. roles to every new user. Is that possible?
Stburcher
  • 64
  • 12
1
vote
1 answer

Chaining federation of CloudFoundry UAA

I have two CloudFoundry UAA instances which have SAML and LDAP identity providers configured for them. Consumers can authenticate using a authorization_code or client_credentials grant and receive the JWT. Now, I need to create another UAA instance…
metacubed
  • 7,031
  • 6
  • 36
  • 65
1
vote
1 answer

Cloudfoundry UAA preflight Origin header not allowed in Safari

I'm trying to access the Cloudfoundry UAAservice using Ajax. My POST request to the /oauth/token triggers a preflight Options request. Which in Chrome and firefox sends following control header value Access-Control-Request-Headers:accept,…
11thdimension
  • 10,333
  • 4
  • 33
  • 71
1
vote
1 answer

Crossing identity zones in Cloudfoundry UAA

We are using UAA's multitenant functionality for our customers. As such, each are given their own identity zone. We'd also like to have an admin identity zone separate from the default UAA identity zone. However, it seems only a user in the default…
Dave Rager
  • 8,002
  • 3
  • 33
  • 52
1
vote
1 answer

Integrating Cloudfoundry UAA with external identity provider

We have all the user data in our local mysql database. We are moving our services to cloud and I need to use cloudfoundry UAA to authenticate by calling a login microservice endpoint on our network instead of doing uaac add user for all the users in…
user1300877
  • 169
  • 1
  • 3
  • 11
1
vote
2 answers

verify jwt obtained from cloudfoundry cf client

I would like to understand better how uaa client token verification works with cloud foundry. After logging in with the cloud foundry cf tool, I have obtained a signed token from using cf oauth-token As I understand this token has been signed by cf…
user152468
  • 3,202
  • 6
  • 27
  • 57
1
vote
2 answers

Error installing cf-uaac on OSX El Capitan

Trying to install the cf-uaac gem on OS X El Capitan. $ gem install cf-uaac Result: Fetching: cf-uaa-lib-3.2.5.gem (100%) Successfully installed cf-uaa-lib-3.2.5 Fetching: highline-1.6.21.gem (100%) Successfully installed highline-1.6.21 ERROR:…
code
  • 4,073
  • 3
  • 27
  • 47
1 2 3
9 10