Hi all, We are implementing a WSO2 Corporate Asset Store [1],[2].
Requirements 1. Support SSO between WSO2 Partner Portal, WSO2 internal apps (like Infra Log Analyzer) & WSO2 Corporate Asset Store. 2. Allow authorized persons to change life-cycle of respective assets. For example there will be a reviewer/s assigned to review marketing related assets. For that we hope to add roles per asset type (marketing-reviewer, marketing-publisher etc). 3. Partners are allowed to access Partner Portal & Corporate Asset-Store only. After having discussions with relevant teams this is the plan we are expecting to follow to support above requirements. 1. WSO2 Corporate Asset Store will be integrated to existing App Manager (Since App Manager is SSO enabled) 2. App Manager will handle user authentication 3. On a successful login attempt, the user will be redirected to relevant app. 4. App Manager will provide the basic user information (username) 5. Asset-Store related user-roles will be created & managed inside Asset-Store because, - It is not practical to store Asset-Store related user information in the App Manager's User Store. - Number of user-roles will grow as new asset types are introduced - Asset-Store must have a user-friendly UI to add new roles & assign users to roles 6. Asset-Store will be connected to App Manager's User-Store to fetch user list (Read-only). This is required to assign users to relevant user-roles. 7. When a user logs in, Asset-Store gets the username from the login response & Asset-Store will map the user name to its user-roles. 8. Asset-Store will control the access to assets & user actions (changing assets' life-cycle) based on the mapped user-role. Please provide comments on this approach. References [1] [Marketing][Strategy]WSO2 Corporate Asset Store [2] [Eng]WSO2 Corporate Asset Store Meeting Notes - 20/03/2014 Best Regards, Lakshitha Harshan Software Engineer Mobile: *+94724423048* Email: [email protected] Blog : http://harshanliyanage.blogspot.com/ *WSO2, Inc. :** wso2.com <http://wso2.com/>* lean.enterprise.middleware.
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
