[midPoint] REST authentication

Petr Gašparík - AMI Praha a.s. petr.gasparik at ami.cz
Thu Dec 8 12:33:30 CET 2016


Hi,
Now, I understand.

I think the best answer is from Radovan Semancik itself, the midPoint chief
architect:
http://lists.evolveum.com/pipermail/midpoint/2015-August/001318.html


--

s pozdravem

Petr Gašparík
solution architect

gsm: [+420] 603 523 860
e-mail: petr.gasparik at ami.cz


AMI Praha a.s.
Pláničkova 11
162 00 Praha 6
tel.: [+420] 274 783 239
web: www.ami.cz


[image: AMI Praha a.s.]

[image: AMI Praha a.s.]
<http://www.ami.cz/reseni-a-sluzby/bezpecnost-dat/audit-roli-a-opravneni-sap>

Textem tohoto e-mailu podepisující neslibuje uzavřít ani neuzavírá za
společnost AMI Praha a.s.
jakoukoliv smlouvu. Každá smlouva, pokud bude uzavřena, musí mít výhradně
písemnou formu.


2016-12-08 11:48 GMT+01:00 Pertti Kellomäki <pertti.kellomaki at datactica.fi>:

> Hi Petr,
>
> 8.12.2016, 12:40, Petr Gašparík - AMI Praha a.s. kirjoitti:
>
>> Hi Pertti,
>> My common approach is to create application user in midPoint, that is
>> used to call midPoint. Advantage is that you can limit privileges/rights to
>> this user.
>>
>> Is that suitable for you? Do you need to call midPoint on behalf of
>> particular user?
>>
>> Having an application user is my plan B. The reason I would like to call
> midPoint on behalf of a particular user is that then I can use midPoint's
> mechanisms for delegated administration, like assigning roles to other
> users.
>
>
> Pertti
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20161208/f680e2b8/attachment.htm>


More information about the midPoint mailing list