[midPoint] API security question answers

John Bigornia johnbigo at hawaii.edu
Tue Aug 13 21:05:20 CEST 2024 

Hi all! I am trying to modify the security questions answers for users on
midpoint via REST API and I'm a bit stuck. I have the following object
modification just for testing purposes:
<objectModification
        xmlns="http://midpoint.evolveum.com/xml/ns/public/common/api-types-3
"
        xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3"
        xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
        xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
        xmlns:xsd="http://www.w3.org/2001/XMLSchema">
    <itemDelta>
        <t:modificationType>replace</t:modificationType>
        <t:path>credentials/securityQuestions/questionAnswer</t:path>
        <t:value>
            <c:questionAnswer>
                <c:questionIdentifier>
http://midpoint.evolveum.com/xml/ns/public/security/question-2#q001
</c:questionIdentifier>
                <c:questionAnswer>
                    <t:protectedString>
                        <t:clearValue>Blue</t:clearValue>
                    </t:protectedString>
                </c:questionAnswer>
            </c:questionAnswer>
        </t:value>
    </itemDelta>
</objectModification>
Here is the security question that is defined in my SecurityPolicy:
            <question>
                <identifier>
http://midpoint.evolveum.com/xml/ns/public/security/question-2#q001
</identifier>
                <questionText>What is your favorite color?</questionText>
            </question>
It modifies the user, however it does not populate the security question
answer on the user object. It instead creates the following:
...
<securityQuestions>
    <metadata>
        <modifyTimestamp>2024-07-26T14:40:57.458-10:00</modifyTimestamp>
        <modifierRef oid="00000000-0000-0000-0000-000000000002"
relation="org:default" type="c:UserType"/>
        <modifyChannel>
http://midpoint.evolveum.com/xml/ns/public/common/channels-3#rest
</modifyChannel>
    </metadata>
    <questionAnswer id="33"/>
</securityQuestions>
...
I'm thinking that the question isn't being referenced correctly in the
objectModification, any help is appreciated.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20240813/8d24584d/attachment.htm>

More information about the midPoint mailing list