The following procedure demonstrates how to update your existing UAA clients to work with new UAA security policy enforcement.
IMPORTANT If you currently have a UAA Client using implicit or authorization_code grant_types, you must ensure your clients have the correct redirect_uri configured. If not, your users will not be able to sign in after this rule enforcement begins around August 1.
Sign in to the UAA Dashboard, by accessing your UAA instance through the Predix.io console. Click on the "Open Service Instance" button. Then login with the admin client credentials.
Click on the Client Management tab, and select the client used by your application. This client uses authorization_code and has no redirect_uri, so it must be updated.
Click the pencil icon to edit, and enter the redirect URI for your application. This will normally be the full URL for your application, including the "/callback" path. The redirect URI property in your client can be a single URL, or an array of white listed URLs, or a URL with some limited wildcards. See below for more details.
For more details, please read this KB article:
Per one of the Predix teams input this feature deployment in production delayed till 08/22.
I createed UAA instance (vb-uaa) and client (test-client). i given my application URI in the redirect uri.
i try to launch my application using browser and application launch directly without redirecting to uaa client uri.
NOte: 1) i didn't bind my application to UAA service instance. 2) didn't added any code changes for UAA in my application.
please guide me. i would like to redirect to UAA uri when i try to launch my application.
You do need to add code to your front end application to redirect to the UAA login screen. Please see this developer guide for more details:
How-To: Secure/Protect your REST API Spring-Boot Microservice using UAA or Shared-UAA
Multifactor Authentication (MFA) in UAA
How-To: Use GE Staging and Testing SSOs with Predix UAA
How-To: Manage resources by space in your enterprise Predix Org
How-To: Create a User Account and Authentication (UAA) Service Instance in Your Space
How to: Install UAAC on Windows
UAA introspection api's now available.
Is there a way to fetch the UAA token from Spring boot application hosted locally