Hi .. since this is an internal effort this should probably be on an internal list :-). Anyway the two refs were missing!
On Fri, Mar 21, 2014 at 7:25 PM, Harshan Liyanage <[email protected]> wrote: > Hi all, > > We are implementing a WSO2 Corporate Asset Store [1],[2]. > > Requirements > > 1. Support SSO between WSO2 Partner Portal, WSO2 internal apps (like Infra > Log Analyzer) & WSO2 Corporate Asset Store. > > 2. Allow authorized persons to change life-cycle of respective assets. For > example there will be a reviewer/s assigned to review marketing related > assets. For that we hope to add roles per asset type (marketing-reviewer, > marketing-publisher etc). > > 3. Partners are allowed to access Partner Portal & Corporate Asset-Store > only. > > After having discussions with relevant teams this is the plan we are > expecting to follow to support above requirements. > > 1. WSO2 Corporate Asset Store will be integrated to existing App Manager > (Since App Manager is SSO enabled) > > 2. App Manager will handle user authentication > > 3. On a successful login attempt, the user will be redirected to relevant > app. > > 4. App Manager will provide the basic user information (username) > > 5. Asset-Store related user-roles will be created & managed inside > Asset-Store because, > > - > > It is not practical to store Asset-Store related user information in > the App Manager's User Store. > - > > Number of user-roles will grow as new asset types are introduced > - > > Asset-Store must have a user-friendly UI to add new roles & assign > users to roles > > 6. Asset-Store will be connected to App Manager's User-Store to fetch user > list (Read-only). This is required to assign users to relevant user-roles. > > 7. When a user logs in, Asset-Store gets the username from the login > response & Asset-Store will map the user name to its user-roles. > > 8. Asset-Store will control the access to assets & user actions (changing > assets' life-cycle) based on the mapped user-role. > > Please provide comments on this approach. > > References > > [1] [Marketing][Strategy]WSO2 Corporate Asset Store > > [2] [Eng]WSO2 Corporate Asset Store Meeting Notes - 20/03/2014 > > > Best Regards, > > Lakshitha Harshan > Software Engineer > Mobile: *+94724423048* > Email: [email protected] > Blog : http://harshanliyanage.blogspot.com/ > *WSO2, Inc. :** wso2.com <http://wso2.com/>* > lean.enterprise.middleware. > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- Sanjiva Weerawarana, Ph.D. Founder, Chairman & CEO; WSO2, Inc.; http://wso2.com/ email: [email protected]; office: (+1 650 745 4499 | +94 11 214 5345) x5700; cell: +94 77 787 6880 | +1 408 466 5099; voip: +1 650 265 8311 blog: http://sanjiva.weerawarana.org/; twitter: @sanjiva Lean . Enterprise . Middleware
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
