[OPENAM-273] com.sun.identity.policy.PolicyManager, when used in client API, does not work across multiple SSO sessions in a single JVM instance Created: 01/Oct/10 Updated: 20/Nov/16 Resolved: 02/Feb/15
|Fix Version/s:||10.0.3, 11.0.3, 12.0.1, 13.0.0|
|Remaining Estimate:||Not Specified|
|Time Spent:||Not Specified|
|Original Estimate:||Not Specified|
Using ForgeRock OpenAM Express Build 9(2010-February-07 13:29)
|Support Ticket IDs:|
Summary: If you create a PolicyManager using an SSOToken, and that token subsequently becomes invalid, then creating a new PolicyManager with a new SSOToken gives errors on all operations.
Background: Our company would like to manage our OpenSSO policies by way of a separate web application that makes more sense to problem domain of our business analysts, et al. Our first plan was to recreate the PolicyManager each time the session limit was reached, but has been hindered by this bug. We are now using Agent users, which have unlimited session time, to manage the policies. (See attached enhancement request for more details on how we do this).
Steps to reproduce (all in the same JVM instance):
1) policyManager = new PolicyManager(ssoToken)
An exception like this is thrown:
[our code's portion of the stacktrace omitted]
|Comment by jkauzlar [ 01/Oct/10 ]|
Delegating privileges to agent users, as noted above: https://bugster.forgerock.org/jira/browse/OPENAM-274
|Comment by Peter Major [X] (Inactive) [ 04/Jan/15 ]|
PolicyManager is now deprecated, use the REST API to manage policies.