My Profile

My Profile

My detail page

Contains the user’s updatable information.

Display name: Contains the user’s name, which is used within Identify*Admin.

Upload certificate: Allows the user to select the Browse button to upload a certificate to be used for the STS Web service.

profile-detail

My Password: Enables the user to change his password by entering the existing password as well as the new password twice and clicking Save.

Note: For security reason, if the number of times user input wrong old password exceeds 10, that user will be disabled to prevent brute-force password attack.

profile-password

Other Information: Includes claims that are set up in the system and which have been tagged as updateable.

profile-claims

Consents page

Allows the user to manage his or her list of consent settings. The only Protocol Connections to be listed in the "personal consent management page" are those where the user has in fact provided consent.

profile-consents

When the setting "Remember Consent" on the Protocol Connection is True, a checkbox will appear on the consent box saying "This consent also applies to my future login to this site".

The user can only save his consent settings if all required claims set and scopes have been set to True.

Consent history page

profile-consent-history

My REST API key page

This page helps users to manage their tokens which are used access the REST API. From this page a user can:

  • Create the 'Identify OAuth2 Token for REST APIs' connection.
  • List and view all existing valid refresh tokens.
  • Generate a new REST API refresh token.
  • Revoke an existing refresh token.
  • Exchange an access token for testing purpose.
  • Copy refresh/access token to clipboard.

Note: For security purpose, only users who have the "Administrator" role can use the above functionalities.

Create the 'Identify OAuth2 Token for REST APIs' connection

If the 'Identify OAuth2 Token for REST APIs' connection is not created yet, you can click on the "Add Connection" button to create it.

create-connection

Refresh token list

This page lists all existing valid REST API refresh tokens of the logged in user. When you hover your mouse on each token, you can find the following functions:

  • Open the hovered refresh token on a dialog where you can view the full token, exchange for an access token, or revoke the refresh token .
  • Copy the hovered refresh token to clipboard .
  • Revoke the hovered refresh token .

my-rest-api-key

Generate a new refresh token

Click on the new button and then select the "Generate a new refresh token" option to generate a new refresh token.

View a refresh token

Click on a row or hover and click on the icon to open the refresh token dialog.

refresh-token-1

Exchange the refresh token to access token

From the refresh token dialog, you can exchange for an access token for testing purpose.

refresh-token-2

The access token which is generated from a valid refresh token contains only necessary information that is needed for REST API access.

access-token-jwt

Revoke a refresh token

There are two ways to revoke a refresh token

  • On the refresh token list, choose .
  • On the refresh token dialog, click on the 'Revoke' button.

A confirmation message will be displayed to make sure that they want to revoke the selected token.

myrestapi-revoke-confirm

Copy a refresh/access token to clipboard

You can click on the icon to copy a refresh or an access token to clipboard. Note that the exchanged access token will disappear right after the dialog is closed.