Linking Talend Identity and Access Management with Talend Data Preparation

Talend Real-time Big Data Platform Installation Guide for Linux

EnrichVersion
6.4
EnrichProdName
Talend Real-Time Big Data Platform
task
Installation and Upgrade

If you have installed Talend Identity and Access Management manually, you need to create an OIDC client in order to link Talend Identity and Access Management with Talend Data Preparation. Note that this operation is automatically done if you install Talend Identity and Access Management using Talend Installer.

  1. Stop Talend Identity and Access Management and Talend Data Preparation if they have been already started.

  2. Go to iam-A.B.C/apache-tomcat-x.x.xx/clients.

  3. Create a tdp-client.json file.

  4. Paste the following content:

    {
    "post_logout_redirect_uris" : [ "http://my-machine:9999", "http://localhost:9999", "http://127.0.0.1:9999" ],
    "grant_types" : [ "authorization_code", "refresh_token", "password" ],
    "scope" : "openid refreshToken",
    "client_secret" : "+1/7vegEOVHeQD9JKmtz8I9s4tgVuRMqC2ja7efFHro=",
    "redirect_uris" : [ "http://my-machine:9999/signIn", "http://localhost:9999/signIn", "http://127.0.0.1:9999/signIn" ],
    "client_name" : "TDP DataPrep",
    "client_id" : "64xIVPxviKWSog"
    }

    Adapt the parameters to your needs:

    Parameter

    Description

    post_logout_redirect_uris

    URI to which the user is redirected after logging out.

    If Talend Identity and Access Management and Talend Data Preparation are located on the same machine, be sure to put the name of the machine in addition to localhost and 127.0.01 as shown in the example.

    grant_types

    The OAuth specification has different grant types. These authorizations allow the client application to obtain an access token. This token represents the client permission to access user data. Set the grant_types to the values shown in the example.

    scope

    OpenID defined scopes. Set it to the value shown in the example.

    client_secret

    Client password.

    The client password is encrypted at first launch.

    redirect_uris

    URI to which the user is redirected after logging in. The /signIn part of the URI is mandatory.

    If Talend Identity and Access Management and Talend Data Preparation are located on the same machine, be sure to put the name of the machine in addition to localhost and 127.0.01 as shown in the example.

    client_name

    Name of the OIDC client. The TDP part of the client name (with the trailing space) is mandatory.

    client_id

    Identifier of the OIDC client.

  5. Start Talend Identity and Access Management and Talend Data Preparation.