Question

2
Replies
368
Views
Kanneesh Member since 2018 11 posts
Accenture Technology Solutions Pte Ltd
Posted: October 3, 2018
Last activity: October 15, 2018
Closed
Solved

[PEGA 7.4] OAUTH2 - Password Grant with External Authentication - Not working

Hi All,

We are trying OAuth [grant_type = password] for External users . We have customized the pyCustomIdentityMappingAct activity to invoke the AuthenticationLDAPVerifyCredentials activity with the username and password part of my OAuth request. But the Token endpoint /oauth2/v1/token still returns us the access token and refresh token though I send incorrect password part of my request. I revoked my current token and tried again, but the problem still persists.

One more problem is , I had to reset my LDAP password once before I invoke OAUTH service /oauth2/v1/token , "Error authenticating : Password expired. Change user password", but no problem logging in to application using /PRWebLDAP1

Any idea how to fix this problem ?

Security
Moderation Team has archived post
Share this page LinkedIn