This content has been marked as final. Show 4 replies
In the OAM policy responses you define the name of the cookies that you want to contain the attribute values, you can define as many cookie/value responses as you want. The OAMAuthn... cookie is not used for this purpose.
Incidentally, it would be more secure if the application used header variables instead of cookies, because then that user/role information would not be returned to the browser (whereas cookies are).
Thanks for your update . We will evaluate the options with application team.
I have a query regarding the cookie response.In the response section, When we choose cookie option.we are getting the following field values.
"Name" || "Value" . In the first filed(Name) I have to mention the attribute name(Ex: USER_ID) , In the Second field (Value) I have to mention the attribute value ($user.uid).
We don't see any option to mention the Cookie name in the response section. Is there any way which we can mention the cookie name? Could you please give me sample response.
Cookie Name is the name column.
For example if in Name you say USER_ID and in type choose cookie and value $user.userid then a cookie by name of USER_ID will be created and its will have the value of USERID.
Be sure to mention these cookies both in authentication and authorization polices else you these may not be populated for all responses.
If you want to pass some custom attribute then you will have to use Custom authentication plugin which will retrieve the value from OID and set it in cookies.
For custom authentication plugin you may see http://abhaykumaroraclefusion.blogspot.com/2013/05/creating-custom-authentication-plugin.html