All these requirements fall into the category of authorization for service providers. There can be requirements to do user store based authorization, tenant based authorization, etc. for each service provider. This is captured in [1]. However this should not relate to any specific protocol. Generally end users should not be linked with any specific SSO protocol. If that is needed for some reason we can extend the authorization handler to get it done, but it isn't a major requirement.
[1] https://wso2.org/jira/browse/IDENTITY-3110 On Sun, Aug 30, 2015 at 8:40 AM, Gayan Gunawardana <[email protected]> wrote: > Hi All, > > In WSO2 Identity Server 5.0.0 we can register Service Providers to consume > different protocols like SAML, Oauth, OpenID. > > Is it a valid requirement to address, set specific user store to Service > Provider ? > > Sample use case would be suppose there are two Service Providers SP-A and > SP-B. SP-A utilize only Oauth and SP-B utilize only SAML. There are two > user stores like a.com and b.com. Now requirement is users in a.com can > consume Oauth but not SAML similarly users in b.com can consume SAML but > not Oauth. > > WDYT ? > > -- > Gayan Gunawardana > Software Engineer; WSO2 Inc.; http://wso2.com/ > Email: [email protected] > Mobile: +94 (71) 8020933 > -- Thanks & Regards, *Johann Dilantha Nallathamby* Technical Lead & Product Lead of WSO2 Identity Server Integration Technologies Team WSO2, Inc. lean.enterprise.middleware Mobile - *+94777776950* Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>*
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
