[midPoint] Lookup values in the Reset password form

Oleksandr Nekriach o.nekriach at dynatech.lv
Mon Aug 5 16:53:46 CEST 2019


Hi all,
Is it possible to use Lookup values in the Reset  password form?

I have multiple IDM identities accounts that have the same emails and this
leads to "Reset password failed. Please contact system administrator" error
message. For this reason to reset the password custom form (forgot
password) I need to add one more field like a username. And everything
works perfectly. But almost always users don't remember which email for
what username they use.

I want to simplify the life for users and use subtype field instead of
username, but this has a sense if the values of subtype filed will be
predefined in Lookup.
I have created a Lookup and added a reference to Lookup for subtype
attribute in a default object template and checked. In the user profile,
this works perfectly and I can select predefined values but this does not
work on Forgot password page.  Forgot password page has stopped opening and
there are no errors in the logs.
I guess the issue with authorization of Lookup object for anonymous access.
Somebody has a similar issue and is there some way to solve this?

The custom form

 <form xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
xmlns:icfs="
http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3"
xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3"
xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="
http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:t="
http://prism.evolveum.com/xml/ns/public/types-3"
oid="bb42fa87-b066-48a0-a960-c77fc8b53003" version="7">
    <name>Reset password form with Employee Attribute</name>
    <metadata>
        <createTimestamp>2019-08-05T16:40:43.922+03:00</createTimestamp>
        <creatorRef oid="7fb2baf0-d89e-497d-b1ec-de5eee9a7d55"
relation="org:default" type="c:UserType">
        </creatorRef>
        <createChannel>
http://midpoint.evolveum.com/xml/ns/public/model/channels-3#objectImport
</createChannel>
    </metadata>
    <formDefinition>
        <display xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:type="c:FormDisplayType">
            <label>Fill in required fields</label>
        </display>
        <formItems list="true">
            <formField>
                <binding>
                    <c:path>subtype</c:path>
                </binding>
                <display xmlns:xsi="
http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:FormItemDisplayType">
                    <label>Accout Type</label>
                    <help>Type of Accout</help>
                    <minOccurs>1</minOccurs>
                </display>
            </formField>
            <formField>
                <binding>
                    <c:path>extension/userEmails</c:path>
                </binding>
                <display xmlns:xsi="
http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:FormItemDisplayType">
                    <label>E-mail</label>
                    <help>User Email</help>
<minOccurs>1</minOccurs>
<maxOccurs>1</maxOccurs>
                </display>
            </formField>
        </formItems>
    </formDefinition>
</form>


Record in an object template

    <item>
        <c:ref>subtype</c:ref>
        <displayName>FocusType</displayName>
        <valueEnumerationRef xmlns:tns="
http://midpoint.evolveum.com/xml/ns/public/common/common-3"
oid="00000000-0000-0000-0005-000000000001" relation="org:default"
type="tns:LookupTableType">
        </valueEnumerationRef>
    </item>

-- 
Best regards, Oleksandr



Oleksandr Nekriach | Identity and access management engineer

Dynatech, Jeruzalemes iela 1, Rīga, LV-1010, Latvia
<https://www.google.com/maps/place/DYNATECH/@56.9575205,24.1107235,17z/data=!3m1!4b1!4m5!3m4!1s0x46eecf5753e42351:0x23b120b9745cae62!8m2!3d56.9575205!4d24.1129122>

+37125314685 <+371%2025%20314%20685>
,
o.nekriach at dynatech.lv
|
www.dynatech.lv


Stay connected:
<https://www.facebook.com/DynatechLatvia/?ref=br_rs>
<https://www.linkedin.com/company-beta/17893047/>


Confidentiality Notice: This message contains confidential information and
is intended only for the named recipient(s). If you are not the addressee
you may not copy, distribute or perform any other activities with this
information. If you have received this transmission in error, please notify
us by e-mail immediately. E-mail transmission cannot be guaranteed to be
secure or error-free as information could be intercepted, corrupted, lost,
destroyed, arrive late or incomplete, or contain viruses.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20190805/83bb9b66/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7771
Type: image/png
Size: 790 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20190805/83bb9b66/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7772
Type: image/png
Size: 786 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20190805/83bb9b66/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7770
Type: image/png
Size: 4265 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20190805/83bb9b66/attachment-0002.png>


More information about the midPoint mailing list