WSO2 Identity Server 5.2.0 Released !
WSO2 Identity Server team is pleased to announce the release of version
5.2.0 of the WSO2 Identity Server (IS).
WSO2 Identity Server is an open source Identity and Entitlement management
server. It supports a wide array of authentication protocols such as SAML
2.0 Web SSO, OAuth 2.0/1.0a, OpenID Connect and WS-Federation Passive. It
supports role based authorization and fined grained authorization with
XACML 2.0/3.0 while inbound/outbound provisioning is supported through SCIM
WSO2 Identity Server is developed on top of the revolutionary WSO2 Carbon
platform, an OSGi based framework that provides seamless modularity to your
SOA solution via componentization.
All the major features have been developed as pluggable Carbon components.
You can download this distribution from http://wso2.com/products/
The online documentation is available at http://docs.wso2.org/wiki/
*How to Run*
1. Extract the downloaded zip
2. Go to the bin directory in the extracted folder
3. Run the wso2server.sh or wso2server.bat as appropriate
4. If you need to start the OSGi console with the server use the property
-DosgiConsole when starting the server.
Following New Features are included
[IDENTITY-4453 <https://wso2.org/jira/browse/IDENTITY-4453>] - Add PKCE
Support for OAuth 2.0 Authorization Code Grant Type
[IDENTITY-4096 <https://wso2.org/jira/browse/IDENTITY-4096>] - SAML 2.0
token support for WS-Federation (Passive)
[IDENTITY-3287 <https://wso2.org/jira/browse/IDENTITY-3287>] - API to get
the number (count) of users
[IDENTITY-2643 <https://wso2.org/jira/browse/IDENTITY-2643>] - Support for
OpenID Connect Session Management
[IDENTITY-4421 <https://wso2.org/jira/browse/IDENTITY-4421>] - Enhance
WS-Trust Support for Microsoft Office 365
[IDENTITY-4647 <https://wso2.org/jira/browse/IDENTITY-4647>] - Publishing
Application Authentication Data for Analytics
[IDENTITY-3286 <https://wso2.org/jira/browse/IDENTITY-3286>] - User Account
[ANLYIS-1 <https://wso2.org/jira/browse/ANLYIS-1>] - Ip to Geo map
[ANLYIS-17 <https://wso2.org/jira/browse/ANLYIS-17>] - Incorporate
Analytics Standards for the artifacts
[ANLYIS-37 <https://wso2.org/jira/browse/ANLYIS-37>] - Add Multi Tenant
support for spark scripts and other related artifacts
[ANLYIS-149 <https://wso2.org/jira/browse/ANLYIS-149>] - Login Attempts
[ANLYIS-150 <https://wso2.org/jira/browse/ANLYIS-150>] - Session related
Complete list of bug fixes and improvements
IS Runtime <https://wso2.org/jira/issues/?filter=13337>
IS Analytics <https://wso2.org/jira/issues/?filter=13326>
New Features in This Release
OpenID Connect Session Management
OpenID Connect is an emerging authentication protocol defined on top of
OAuth 2.0 protocol. OpenID Connect Session Management specification,
defines a way for a Relying Party (RP), to monitor the login status of an
end user with an OpenID Connect Provider (OP) minimizing the network
Last SAML based login timestamp and Last password modified Timestamp
WSO2 IS is now able to know the last login time and last password update
time of a user.
You should be able to see the corresponding values listed through the
API to get the number (count) of users
One of the new functionalities introduced with WSO2 IS is the service to
count the number of users based on user names patterns and claims and also
to count the number of roles matching a role name pattern in user store. By
default this supports JDBC user store implementations only and provides
freedom to extend the functionality to LDAP user stores or any other type
Support for Microsoft Office 365 – WS Trust
With WSO2 IS now you will be able to successfully configure the WS-Trust
protocol for Microsoft Office 365 to provide active clients with SSO to
many of Office 365 features such as the mobile mail app,external mail apps,
SAML 2.0 support for WS-Federation Passive
WSO2 IS is now able to support SAML 2.0 tokens with Passive STS.
Event publishers to publish events related to authentication operations
(login and session) to various endpoints
Login attempts related analytics
This comprises of three main sections (Overall, Federated and Local).
In each section, statistics are displayed over various dimensions such as
service providers, user-stores, roles, users and etc..
Session related analytics
This covers statistics relating to sessions carried out for different
applications accessed via WSO2 IS.
Geo location based statistics for login attempts.
All the open issues pertaining to WSO2 Enterprise Service Bus are reported
at the following locations:
IS Runtime <https://wso2.org/jira/issues/?filter=13340>
IS Analytics <https://wso2.org/jira/issues/?filter=13127>
*How You Can Contribute*
Join our mailing list and correspond with the developers directly.
Developer list : d...@wso2.org | Subscribe
<dev-requ...@wso2.org?subject=subscribe>| Mail Archive
User forum : StackOverflow
We encourage you to report issues, documentation faults and feature
requests regarding WSO2 Identity Server or in the Carbon base framework
through the public WSO2 Identity Server JIRA
<https://wso2.org/jira/browse/IDENTITY>or Carbon JIRA
We are committed to ensuring that your enterprise middleware deployment is
completely supported from evaluation to production. Our unique approach
ensures that all support leverages our open development methodology and is
provided by the very same engineers who build the technology. For more
details and to take advantage of this unique opportunity
For more information about WSO2 Identity Server, please see
http://wso2.com/products/identity-server or visit the WSO2 Oxygen Tank
<http://wso2.com/library/>developer portal for additional resources.
Thank you for your interest in WSO2 Identity Server.
*The WSO2 Identity Server Team*
Mobile : +94 (0) 718 338 360
Architecture mailing list