> Is it possible for us to create internal users as well? If so - Admins > can provision to test users within our system safely. >
AFAIK there is no internal users concept then we have to point to secondary user store. > > >> case 02: If write access is provided, we can create both users and roles >> in the given user store (typically read/write LDAP) >> > >> >> In case 02 disable internal roles and case 01 only enable internal roles. >> (Please correct me if I am wrong) >> > > In case 02 -we can make it optional to disable internal roles. For > example - if the admin wants to create a group without worrying about user > store roles to dynamically provision a policy. If an external user store > is configured -internal roles creation become optional. If not Internal > role creation is enabled. We can have a json config about the preference in > case of external user store. WDYT? > This will make system more complex because of some roles are inside the user store and some other roles are stored internally. > > -- Gayan Gunawardana Software Engineer; WSO2 Inc.; http://wso2.com/ Email: [email protected] Mobile: +94 (71) 8020933 Blog: http://gayanj2ee.blogspot.com/
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
