Deeplinks/direct link to access management page: Manage user access

Symptoms

Environment: Apache Tomcat 9.0.x and SailPoint IdentityIQ 8.0

Specific access request pages can be accessed through direct links using parameters. As per the administration guide below is the form that has to be used to make an Access Request using direct links.

https://<hostname>/identityiq/ui/rest/redirect?rp1=/accessRequest/accessRequest.jsf&rp2=accessRequest/manageAccess/add?identityName=<identity1>&filterRoleType=<roleType1>&filterRoleStringAttr=<roleAttrib1>
 

https://<hostname>/identityiq/ui/rest/redirect?rp1=/accessRequest/accessRequest.jsf&rp2=accessRequest/manageAccess/add?identityName=<identity1>&filterEntitlementApplication=<entApp1>&filterEntitlementAttribute=<entAttrib1>&filterEntitlementEntitlement=<entValue1>
 

https://<hostName>/identityiq/ui/rest/redirect?rp1=/ui/index.jsf&rp2=accessRequest/review?identityName=<identity1>&entitlement=<entitlementId>

This direct links when used causes issue when the parameters are more than one. It somehow considers only the 1st parameter.

Solution

Replace & with %26 to add parameters in Direct links

https://<hostname>/identityiq/ui/rest/redirect?rp1=/accessRequest/accessRequest.jsf&rp2=accessRequest/manageAccess/add?identityName=<identity1>%26filterRoleType=<roleType1>%26filterRoleStringAttr=<roleAttrib1>
 

https://<hostname>/identityiq/ui/rest/redirect?rp1=/accessRequest/accessRequest.jsf&rp2=accessRequest/manageAccess/add?identityName=<identity1>%26filterEntitlementApplication=<entApp1>%26filterEntitlementAttribute=<entAttrib1>%26filterEntitlementEntitlement=<entValue1>
 

https://<hostName>/identityiq/ui/rest/redirect?rp1=/ui/index.jsf&rp2=accessRequest/review?identityName=<identity1>%26entitlement=<entitlementId>

NOTE: Role and Entitlement for which the request has to be made should be Requestable.