I'm using the REST API to obtain a list of users and properties.
http://developer.okta.com/docs/api/resources/users.html
The User object returned by Get Users or List Users contains the secondary email address (in the Profile object) and the forgotten password question (in the Credentials object). I do not see the forgotten password text message phone number and country. Is that not available in the User object, and if not is it available anywhere else?
Thanks,
Michael
Related
I want to Create a user screen with Two authentications (SMS and Email)
User will receive email to verify and activate his account first.
After that he set password and he will receive SMS massage to verify the password.I want to do this in Oracle apex.I have tried Custom Authentication but i didn't found fruitful, Any one have some good idea to achieve this.
after u take care of the email and sms verification, u should store that data in the data base and create a function to use in your custom authentication that verifies if the user is already validated.
put the function in shared components -> authentication schemes -> settings -> Authentication Function Name
(the function must return true or false to allow the login)
I'm not a fan of using SMS for Two-Factor Authentication, but if you must, perhaps this might demo implementation for Time-based One Time Password (TOTP) might give you some ideas: https://github.com/fuzziebrain/orclapex-tfa-demo
I provided some background information here as well: https://fuzziebrain.com/content/id/1718/
Good luck!
I have achieved this in one of my APEX project but only with the e-mail. For the sms I use it in another context but you could still do it. You will need a smtp server ( you can run one on your server ) and for the sms you will need an external provider. In your oracle database, create a table called OTP ( one time password ).
This table contains a foreign key to a user. When the user creates an account, run a dynamic action in pl/sql that will generate a random 6 digit number that will be encrypt in your OTP table. This dynamic action will also send an email to the user with APEX_MAIL. The full documentation for how to use APEX-MAIL is here and it is pretty easy to use. You can send the user the password for authentication trough email.
Create a new session user called user_na (not authenticated) and make it so that when he connects, the only page he can see is a page with a text field to enter the password he receive through email. After he enters it, encrypt it the same way you did when he created an account and compare the password in the OTP table. If they match , change his account type to user and then he will be able to access every page that you made accessible for the users.
If you also want to send an sms, I recommend using this tutorial. The sms provider have a free trial if you want to test. If you have any questions don’t hesitate to ask I can easily help you with this.
NOTE: if you don’t want to create different session_users you can just add a column in your user table named authenticated. Set it to 0 by default and to 1 when he enters the email password. Then, when he log in, check if this value is 0 or 1 to know which page you should redirect him to.
I have an email account with exchange, i can send and receive emails from that account's email.
This account is a member of a distribution list, i want to be able to send the replies from this account with the address of the distribution list (on behalf of).
I tried to set the Email.From property and that made no difference
I tried to set the Email.Sender property and it gave me at error that this property cannot be changed although it is a set and get.
The account does have permissions to send on behalf of the distribution list.
Please any ideas?
Regards
Yazeed
If you're logged into multiple Gmail accounts, Google changes the URLs to reference which account you're currently using. For example:
https://mail.google.com/mail/u/0/#inbox/138d85da096d2126 for a convo in my primary account vs
https://mail.google.com/mail/u/1/#inbox/128cfe99d055805d for a convo in another one of my accounts.
Note that one account has /u/0 in the URL and the other has u/1.
My question is: given that I've used the Gmail REST API to find the ID of a particular thread, how can I reliably link to that thread? Is there any programmatic way to ask Google which accounts the user is logged into, and what sequence (0, 1, 2, ...) each account falls under?
Looks like you can include a query parameter called authUser that specifies the email account you want to link to:
https://mail.google.com/mail/?authuser=your.email.address#gmail.com#all/138d85da096d2126
Not sure if this is possible or if anyone has managed to do this. I have user with super admin access, with which I can create a new user for my domain. However I also want to add a couple of calenders to the created user's calendar list. When I create a user I authenticate using my super admin, but then I can't add a calendar to the user's calendar list since I am not logged in as the user. Is it possible to do this as the super admin, or do I have to logout and authenticate as the created user in order to add calendars to their list? This is the base url to which the post request is made:
https://www.googleapis.com/calendar/v3/users/me/calendarList
in the place of me could I pass in the id of the user? I couldn't find any parameter in the documentation with which I can specify the user to whose list I want to add a calender.
Thanks
Two options:
Each user much login to google calendar and share thier calendar to a single user. You can then use this account to update their calendars. Note that google has limitations to how many calendars and request you are allowed before the account goes to read-only mode.
Buy a google apps domain (5$per user per month) and create a service account at console.developers.google.com. Create a project and give it domain wide delgation at admin.google.com. In Apps engine you should be able to give access for admin to modify all users calendars.
No matter what case you choose, you also need to enable CalendarAPI at dev console site. Now with private key created from website request OAuth2 access token, where sub field is set for the users that you want to change calendar for. With returned access token use CalendarAPI to modify calendar.
Sry for bad english and short description, i'm in a hurry. /conner ;)
I am authenticating a user in my windows phone using live sdk.now I want to generate user I'd for that particular email login the back end.is there any standard or Apis within wp sdk which I can use To generate userid for that particular email login
There are no APIs to generate User IDs. This is completely up to you on how to implement this. You can simply use their email address as their User ID since it will be unique for each person. Or you can generate a random GUID using Guid.NewGuid().ToString().
If you want to tie the user to their device then you can use the device unique Id using DeviceExtendedProperties.GetValue("DeviceUniqueId").ToString() However note this value will never change so you will always want to check both email and the device Id in case ownership of device is transferred.