The Social Identity Provider collects configuration details for Identity Providers such as Google, Facebook, Twitter, and the like.
Once created, you should not need to modify Social Identity Provider settings very often. The following sections provide information regarding creating, modifying and deleting Social Identity Providers.
Social Identity Providers can also be created using the WebLogic Scripting Tool.
See Mobile and Social Commands in WebLogic Scripting Tool Command Reference for Identity and Access Management.
You can edit or delete a Social Identity Provider.
Select the Provider in the panel and click Edit or Delete on the panel's tool bar. See Creating a Social Identity Provider for attribute descriptions.
The following sections describe how to generate the Consumer Key and Consumer Secret for the Social Identity Providers that support the OAuth protocol.
Generating a Consumer Key and Consumer Secret for Foursquare
Generating a Consumer Key and Consumer Secret for Windows Live
Note:
The steps in this section are accurate as of the date that this documentation was published. The steps required to create a Consumer Key and Consumer Secret using the Facebook, Twitter, and LinkedIn web sites are subject to change at any time.
You can generate a Consumer Key and Consumer Secret for Facebook.
To generate:
You can generate a Consumer Key and Consumer Secret for Twitter.
To generate:
You can generate a Consumer Key and Consumer Secret for LinkedIn.
To generate:
You can generate a Consumer Key and Consumer Secret for Foursquare.
To generate:
You can generate a Consumer Key and Consumer Secret for Windows Live.
To generate:
This section documents known configuration issues that affect the Facebook Social Identity Provider.
You can configure WebLogic Server from the WebLogic Console to support Facebook.
To configure:
If Host Name Verifier is not set to None, the following error may display when trying to access a protected resource if Facebook is the Identity Provider:
Exception in processRequest method: oracle.security.idaas.rp.RPException: oracle.security.idaas.rp.RPException: Request failed:
Facebook's SSL certificate contains *.facebook.com
as a wildcard host identifier. WebLogic Server versions 10.3.5 and older have a problem verifying host names that contain wildcards that can lead to communication failures between Facebook and installations of Oracle Access Management Mobile and Social deployed on WebLogic Server.
The following workarounds are available:
If using WebLogic Server versions 10.3.5 or older, follow these steps:
In the administration console, choose servers > oam_server_where_Mobile_and_Social_is_deployed > SSL > Advanced.
Change Hostname Verifier to NONE.
This WebLogic Server bug has been fixed in version 10.3.6 as follows: A new custom host name verifier SSLWLSWildcardHostnameVerifier
was implemented, derived from the default host name verifier, so that it supports everything the default host name verifier does, including SANs. You must configure your WebLogic server to use this custom host name verifier if support for wildcard certificates is required during the SSL handshake. One option is to use the following WebLogic property:
-Dweblogic.security.SSL.hostnameVerifier=weblogic.security.utils.SSLWLSWildca rdHostnameVerifier