this is very cool. I would much prefer language based configuration over UI
based configuration for this. I can see what you have in mind is a
declarative language. but given various possible scenarios this will soon
become so complex that people will not be able to understand it without the
UI.
I know this is a crazy idea, but what do you think about an imperative
language. eg:
Inbound.scim.listen(provitionToGoog);
function provitionToGoog(SCIMRequest request){
boolean allowed = true;
if(request.getIP().isInSubnet(255.255.2.2)){
allowed = true;
}else{
allowed =
XACML.getPolicy("conf:/outsideuser.xml").evalForSCIM(request);
}
if (allowed){
SCIMRequest transformedReq =
request.transform(ClamsMapping.getMapping("MyMapping"))
Outbound.google.provitionFromSCIM(transformedReq);
}
}
something like this would be really complex to do via config
On Mon, May 11, 2015 at 5:06 PM, Dulanja Liyanage <[email protected]> wrote:
> Hi Prabath,
>
> Great initiative! And that's a comprehensive list covering many real world
> scenarios.
>
> I saw Role Mapping is not specifically mentioned there. If it's not meant
> to come under claim mappings, shall we include that as well?
>
> Thanks,
> Dulanja
>
> On Sat, May 9, 2015 at 9:17 PM, Prabath Siriwardena <[email protected]>
> wrote:
>
>> [resending with less number of recipients - since this was bounced back
>> previously due to that]
>>
>> On Sat, May 9, 2015 at 5:32 PM, Prabath Siriwardena <[email protected]>
>> wrote:
>>
>>> Please find the details at
>>> http://blog.facilelogin.com/2015/05/identity-mediation-language-iml.html
>>>
>>> Appreciate your comments/suggestions as comments to the blog post or in
>>> this mail thread itself.
>>>
>>> This is at the initial stage of building requirements specification and
>>> hopefully with this we can turn WSO2 Identity Server 6.0.0 into a
>>> fully-fledged Identity Bus...
>>>
>>>
>>> Thanks & Regards,
>>> Prabath
>>>
>>> Twitter : @prabath
>>> LinkedIn : http://www.linkedin.com/in/prabathsiriwardena
>>>
>>> Mobile : +1 650 625 7950
>>>
>>> http://blog.facilelogin.com
>>> http://blog.api-security.org
>>>
>>
>>
>>
>> --
>> Thanks & Regards,
>> Prabath
>>
>> Twitter : @prabath
>> LinkedIn : http://www.linkedin.com/in/prabathsiriwardena
>>
>> Mobile : +1 650 625 7950
>>
>> http://blog.facilelogin.com
>> http://blog.api-security.org
>>
>
>
>
> --
> Thanks & Regards,
> Dulanja Liyanage
> WSO2 Inc.
> M: +94776764717
>
> _______________________________________________
> Architecture mailing list
> [email protected]
> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>
>
--
With regards,
*Manu*ranga Perera.
phone : 071 7 70 20 50
mail : [email protected]
_______________________________________________
Architecture mailing list
[email protected]
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
