On Sun, May 4, 2014 at 8:50 PM, Gayan Gunawardana <[email protected]> wrote:
> > Is it possible for us to create internal users as well? If so - Admins >> can provision to test users within our system safely. >> > > AFAIK there is no internal users concept then we have to point to > secondary user store. > >> >> >>> case 02: If write access is provided, we can create both users and roles >>> in the given user store (typically read/write LDAP) >>> >> >>> >>> In case 02 disable internal roles and case 01 only enable internal >>> roles. (Please correct me if I am wrong) >>> >> >> In case 02 -we can make it optional to disable internal roles. For >> example - if the admin wants to create a group without worrying about user >> store roles to dynamically provision a policy. If an external user store >> is configured -internal roles creation become optional. If not Internal >> role creation is enabled. We can have a json config about the preference in >> case of external user store. WDYT? >> > This will make system more complex because of some roles are inside the > user store and some other roles are stored internally. > It does, internally. I think we need this functionality because - for example sometimes the User Store will not allow us to read the roles or create roles even if we have write access. Cheers~ > >> > -- > Gayan Gunawardana > Software Engineer; WSO2 Inc.; http://wso2.com/ > Email: [email protected] > Mobile: +94 (71) 8020933 > Blog: http://gayanj2ee.blogspot.com/ > -- Chan (Dulitha Wijewantha) Software Engineer - Mobile Development WSO2Mobile Lean.Enterprise.Mobileware * ~Email [email protected] <[email protected]>* * ~Mobile +94712112165* * ~Website dulitha.me <http://dulitha.me>* * ~Twitter @dulitharw <https://twitter.com/dulitharw>* *~Github @dulichan <https://github.com/dulichan>* *~SO @chan <http://stackoverflow.com/users/813471/chan>*
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
