Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

JAS for non-web clients

Questions
Tags
Users
Badges
Ernesto Liria
(111) edited
Mar 14, 9:32 a.m.

 Hi all, 


I have deployed a JAS (v7.0.3) instance with localUserRegistry to perform SSO and authenticate users. When I use a web browser and try to get the resources of a JTS, the browser is redirected to the JAS URL, asks for credentials, authenticates and redirects to the resources... everything is fine.

My problem is trying to get the token usin non-web client (Visual Studio & WPF application).

Using the configuration: 
- token  Endpoint = "{JAS_URI}/oidc/endpoint/jazzop/token"
- auth Endpoint = "{JAS_URI}/oidc/endpoint/jazzop/authorize"

When I perform the Request User Authorization I get an URL but the token is still null, and when I open a browser with that URL I get CWOAU0061E  error.

Did I miss something? Any other configuration is needed?

UPDATE

After reading more doc, I found that for non-web client I should use application passwords and application tokens. So I follow these guides:


The problem is that when i try to create a App-Password/Token, with the personalTokenManagement feature

https://{JAS_URI}/oidc/endpoint/jazzop/personalTokenManagement

It doesn't matter using AdminCenter or web explorer, the browser asks for credentials (and it seems that there isn't the JAS credentials) trying to reach the URL https://{JAS_URI}/oidc/endpoint/jazzop/app-passwords ewith result Error 401 - Unauthorized ~ CWWKS1485E: Client authentication failed. Either the client ID, client secret, or both the client ID and client secret are not valid

Where is allocated the files/permission associated to this feature? I also try with LDAP credentials, but with no success.

Thanks!


 

0 votes

Comments
Ralph Schoon
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER Mar 12, 12:08 p.m.

I am unsure what  "When I perform the Request User Authorization" means. I would assume that the EWM integration in the EWM Visual Studio integration handles the authentication. The Eclipse EWM client does the same. I probably don't understand. Please clarify.  

Ernesto Liria
Mar 14, 9:30 a.m.

Sorry, i'm totally new to this technology and I have a huge lack of knowledge about it, I hope the update could make it clearer

Ralph Schoon
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER Mar 14, 9:59 a.m.

Ernesto, I basically do not understand what you are doing/trying to do and how that is related to Jazz.  What is (Visual Studio & WPF application) and how does that relate to connect to ELM? I am not the best to answer, but if you would ask support using this information, I am sure they would also struggle.


Ernesto Liria
Mar 14, 10:15 a.m.

I want to get the resources of a RM inside a JTS from a desktop application.


The JTS is configured wit SSO and the JAS performs the authorization. 
I get it using a web explorer and the "standard" process. But I want a desktop application (developed with Visual Studio) so I can perform this OAuth2.0 using application passwords to manage the access and data

0 answers
450 views
0 votes

Be the first one to answer this question!

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details
× 1,700

Question asked: Mar 12, 7:50 a.m.

Question was seen: 450 times

Last updated: Mar 14, 10:15 a.m.

Confirmation Cancel Confirm