<div dir="ltr"><div>Hi all,</div><div>Is it possible to use Lookup values in the Reset  password form?</div><div><br></div>I have multiple IDM identities accounts that have the same emails and this leads to "Reset password failed. Please contact system administrator" error message. For this reason to reset the password custom form (forgot password) I need to add one more field like a username. And everything works perfectly. But almost always users don't remember which email for what username they use.<br> <br>I want to simplify the life for users and use subtype field instead of username, but this has a sense if the values of subtype filed will be predefined in Lookup.<br><div>I have created a Lookup and added a reference to Lookup for subtype attribute in a default object template and checked. In the user profile, this works perfectly and I can select predefined values but this does not work on Forgot password page.  Forgot password page <span class="gmail-tlid-translation gmail-translation" lang="en"><span title="" class="gmail-">has stopped opening</span></span> and there are no errors in the logs. <br></div><div>I guess the issue with authorization of Lookup object for anonymous access. Somebody has a similar issue and is there some way to solve this?</div><div><br> </div><div>The custom form <br></div><div><br></div><div> <form xmlns="<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>" xmlns:c="<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>" xmlns:icfs="<a href="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3">http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3</a>" xmlns:org="<a href="http://midpoint.evolveum.com/xml/ns/public/common/org-3">http://midpoint.evolveum.com/xml/ns/public/common/org-3</a>" xmlns:q="<a href="http://prism.evolveum.com/xml/ns/public/query-3">http://prism.evolveum.com/xml/ns/public/query-3</a>" xmlns:ri="<a href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3">http://midpoint.evolveum.com/xml/ns/public/resource/instance-3</a>" xmlns:t="<a href="http://prism.evolveum.com/xml/ns/public/types-3">http://prism.evolveum.com/xml/ns/public/types-3</a>" oid="bb42fa87-b066-48a0-a960-c77fc8b53003" version="7"><br>    <name>Reset password form with Employee Attribute</name><br>    <metadata><br>        <createTimestamp>2019-08-05T16:40:43.922+03:00</createTimestamp><br>        <creatorRef oid="7fb2baf0-d89e-497d-b1ec-de5eee9a7d55" relation="org:default" type="c:UserType"><br>        </creatorRef><br>        <createChannel><a href="http://midpoint.evolveum.com/xml/ns/public/model/channels-3#objectImport">http://midpoint.evolveum.com/xml/ns/public/model/channels-3#objectImport</a></createChannel><br>    </metadata><br>    <formDefinition><br>        <display xmlns:xsi="<a href="http://www.w3.org/2001/XMLSchema-instance">http://www.w3.org/2001/XMLSchema-instance</a>" xsi:type="c:FormDisplayType"><br>            <label>Fill in required fields</label><br>        </display><br>        <formItems list="true"><br>            <formField><br>                <binding><br>                    <c:path>subtype</c:path><br>                </binding><br>                <display xmlns:xsi="<a href="http://www.w3.org/2001/XMLSchema-instance">http://www.w3.org/2001/XMLSchema-instance</a>" xsi:type="c:FormItemDisplayType"><br>                    <label>Accout Type</label><br>                    <help>Type of Accout</help><br>                    <minOccurs>1</minOccurs><br>                </display><br>            </formField><br>            <formField><br>                <binding><br>                    <c:path>extension/userEmails</c:path><br>                </binding><br>                <display xmlns:xsi="<a href="http://www.w3.org/2001/XMLSchema-instance">http://www.w3.org/2001/XMLSchema-instance</a>" xsi:type="c:FormItemDisplayType"><br>                    <label>E-mail</label><br>                    <help>User Email</help></div><div><minOccurs>1</minOccurs></div><div><maxOccurs>1</maxOccurs><br>                </display><br>            </formField><br>        </formItems><br>    </formDefinition><br></form></div><div><br></div><div> <br></div><div>Record in an object template</div><div><br></div><div>    <item><br>        <c:ref>subtype</c:ref><br>        <displayName>FocusType</displayName><br>        <valueEnumerationRef xmlns:tns="<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>" oid="00000000-0000-0000-0005-000000000001" relation="org:default" type="tns:LookupTableType"><br>        </valueEnumerationRef><br>    </item></div><div><br></div>-- <br><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><span style="color:rgb(76,76,76)">Best regards, Oleksandr<br><br><img src="cid:o.nekriach@dynatech.lv1520941785292-7770"> <br><br>Oleksandr Nekriach | Identity and access management engineer <br><br>Dynatech, <a href="https://www.google.com/maps/place/DYNATECH/@56.9575205,24.1107235,17z/data=!3m1!4b1!4m5!3m4!1s0x46eecf5753e42351:0x23b120b9745cae62!8m2!3d56.9575205!4d24.1129122" target="_blank">Jeruzalemes iela 1, Rīga, LV-1010, Latvia</a><br><br><div style="display:inline-block"><a href="tel:+371%2025%20314%20685" value="+37125314685" target="_blank">+37125314685</a></div>,<div style="display:inline-block"><a href="mailto:o.nekriach@dynatech.lv" target="_blank">o.nekriach@dynatech.lv</a></div>|<div style="display:inline-block"><a href="http://www.dynatech.lv" target="_blank">www.dynatech.lv</a></div> <br><br>Stay connected: <br><div style="display:inline-block;margin:5px 5px 0px 0px"><a href="https://www.facebook.com/DynatechLatvia/?ref=br_rs" target="_blank"><img src="cid:o.nekriach@dynatech.lv1520941785292-7771"></a></div><div style="display:inline-block;margin:5px 0px 0px"><a href="https://www.linkedin.com/company-beta/17893047/" target="_blank"><img src="cid:o.nekriach@dynatech.lv1520941785292-7772"></a></div><br><br><span style="font-size:11px;color:rgb(161,161,161)">Confidentiality Notice: This message contains confidential information and is intended only for the named recipient(s). If you are not the addressee you may not copy, distribute or perform any other activities with this information. If you have received this transmission in error, please notify us by e-mail immediately. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses.</span></span></div></div></div></div></div>