Question

2
Replies
371
Views
Close popover
Kanneeswaran Kotteswaran (Kanneesh)
Accenture Technology Solutions Pte Ltd

Accenture Technology Solutions Pte Ltd
SG
Kanneesh Member since 2018 11 posts
Accenture Technology Solutions Pte Ltd
Posted: October 3, 2018
Last activity: October 15, 2018
Closed
Solved

[PEGA 7.4] OAUTH2 - Password Grant with External Authentication - Not working

Hi All,

We are trying OAuth [grant_type = password] for External users . We have customized the pyCustomIdentityMappingAct activity to invoke the AuthenticationLDAPVerifyCredentials activity with the username and password part of my OAuth request. But the Token endpoint /oauth2/v1/token still returns us the access token and refresh token though I send incorrect password part of my request. I revoked my current token and tried again, but the problem still persists.

One more problem is , I had to reset my LDAP password once before I invoke OAUTH service /oauth2/v1/token , "Error authenticating : Password expired. Change user password", but no problem logging in to application using /PRWebLDAP1

Any idea how to fix this problem ?

Security
Moderation Team has archived post