Group Membership Information From OAuth using /ms_oauth/resources/userprofile/me Endpoint result in HTTP 404 (Doc ID 2271408.1)

Last updated on SEPTEMBER 11, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.3.170117 and later
Information in this document applies to any platform.

Symptoms

On : 11.1.2.3.170117

ACTUAL BEHAVIOR
---------------
How to  get the user group membership (memberOf) using /me endpoint

It is documented in the product document(refer the link below) that memberOf endpoint can be accessed using "http://:/.../idX/memberOf" where idX is the entity ID. But it's not working as documented

http://docs.oracle.com/cd/E52734_01/oam/AIAAG/GUID-1E3E3014-A1BB-40FC-82AF-19944ADD8D26.htm#GUID-8D64928F-DC29-42F5-B6C2-212B261F293A

Requirement is to get the user's group membership (memberOf attribute) by passing the access token. We can get the user profile using /ms_oauth/resources/userprofile/me by passing the access token. But not able to get the group membership using /ms_oauth/resources/userprofile/me/memberOf/

The only way to get the group detail is using /ms_oauth/resources/userprofile/users/S5091128D/memberOf but  have to provide access to the scope UserProfile.users to the user. Allowing scope UserProfile.users will allow full directory access .

MOS Doc ID 2250864.1, suggest to use /oic_rest/rest/userprofile but this endpoint is unprotected, one can access this endpoint without an access token.

 

 



Changes

 None

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms