IDM Examples with Role Properties

This is a demo showing how to work with relationship properties (aka role parameters) in ForgeRock IDM >=6.5. In this demo I also show a solution to query this parameters. In the demo I create a role “Driver” and the role parameters are all cars that “belong” to the “Driver”. In some use cases I want to query not only “who is a driver?” or “Is the user a driver?”, I might also query “Who is the driver of this car?”.

Continue reading

Mail Change with Verification in IDM 6.5

In this scenario, a user can change his or her own mail address. Since the mail address usually fulfills a special task, we want to get a confirmation from the user before changing the mail to only allow checked changes. This is achieved by a validation link in the mail to the new address. Only when the validation has taken place, the new mail address is changed to the user profile and the internal validation data is deleted.

Continue reading

Consent driven synchronisation in the age of GDPR

In a small example I would like to point out a basic requirement of the new European data protection regulation. Of course, this is only a small excerpt, but a good example of how easily an identity-driven process can be executed by a user dashboard. (The code for testing is below and should be seen without any guarantee!)

Continue reading