Friday, September 28, 2007

How To - 10.1.3 OWSM: Access OAM action header values in a custom step

OWSM integrates with Oracle Access Manager(OAM) using "Oracle Access Manager Authenticate Authorize" policy step. As part of authentication/authorization OAM can return action header variables back to OWSM, if return action is configured in OAM authentication scheme. Typical usage is to return a certain user attribute or groups that the user belongs to (using obmygroups as the header variable). See OAM documentation for further details on this functionality.

These action header values can be retrieved in an OWSM custom policy step through the following API

HashMap headers = msgCtxt.getProperty(MessageContext.USER_ATTRIBUTES);