This content has been marked as final. Show 4 replies
Does the user profile application already exist? If so, does it already apply authorisation rules, or does its url change depending on which user profile is being modified?
If the application does not already exist, you could use standard OAM configuration to define which attributes can be modified by which users (see https://bug.oraclecorp.com/pls/bug/webbug_print.show?c_rptno=9754642) and "Self" is an option. Then you could either use the OAM user interface (the User Manager) or you could provide your own .asp interface and make updates to the user profiles via IDXML (which is the XML interface to the OAM Identity System).
Thanks Colin for your reply. Sorry I should mention this earlier. We already have a profile application, but only a few managers use it and no authorization is configured yet. The managers update the profiles for people. And the new goal is users in OID log in and update their own profiles. We can modify the application to work with OAM. We would like to have a big picture about how OAM authorization can work in this situation.
Thank you for your time.