Skip to Main Content
Digital Business Automation Ideas


This is an IBM Automation portal for Digital Business Automation products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Please use the following category to raise ideas for these offerings for all environments (traditional on premises, containers, on cloud):
  • Cloud Pak for Business Automation - including Business Automation Studio and App Designer, Business Automation Insights

  • Business Automation Workflow (BAW) - including BAW, Business Process Manager, Workstream Services, Business Performance Center, Advanced Case Management

  • Content Services - FileNet Content Manager

  • Content Services - Content Manager OnDemand

  • Content Services - Daeja Virtual Viewer

  • Content Services - Navigator

  • Content Services - Content Collector for Email, Sharepoint, Files

  • Content Services - Content Collector for SAP

  • Content Services - Enterprise Records

  • Content Services - Content Manager (CM8)

  • Datacap

  • Automation Document Processing

  • Automation Decision Services (ADS)

  • Operational Decision Manager

  • Robotic Process Automation

  • Robotic Process Automation with Automation Anywhere

  • Blueworks Live

  • Business Automation Manager Open Edition

  • IBM Process Mining


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


Status Not under consideration
Created by Guest
Created on Mar 15, 2024

Implement the Token-Exchange protocol extension of oauth

Our organization's identity architects have been working with security architects and deemed a change needs to be made at our organization.  They are calling for the eventual adoption of "Token Exchange" features of oauth.

We integrate with 20+ teams in our organization where we provide data repository functionality for their needs.  The goal is for another application to authenticate user "A".  Then pass us a token on their behalf.  This way we confirm they do, in fact, have a current session in the other application and then also confirm they have the correct rights in FileNet, etc.  You can read up on the standard here:  https://cloudentity.com/developers/basics/oauth-extensions/token-exchange/

Idea priority Low
  • Admin
    Gyanendra S Rathor
    Reply
    |
    Jun 24, 2024

    Hi Robby,
    Thanks for submitting the idea and we recommend an alternate mechanism of doing the token exchange , please let us know if it addresses your concern .

  • Admin
    Gyanendra S Rathor
    Reply
    |
    May 8, 2024

    Hi Robby,

    Please let me know if if the above suggested alternative mechanism addresses token exchange like feature.



  • Admin
    Gyanendra S Rathor
    Reply
    |
    Apr 26, 2024

    Hi Robby,

    Thank you for submitting your idea. We have an alternate mechanism of doing a token-exchange like feature is described here:

    https://www.ibm.com/docs/en/cloud-paks/cp-data/4.8.x?topic=users-enabling-authentication-against-custom-authentication-service

    So in order to get this mechanism to work, a custom authentication handler must be implemented that must be able to validate the foreign OAuth token with the foreign IDP and return a response to the CP4BA Zen server that contains an attribute called username