In IS 5.3.0, we used a self-signup role to distinguish self-signup requests from other provisioning requests, It is not possible to add users with roles/groups in new Identity store architecture. So, I am +1 to user a special claim.
Thanks Isura. *Isura Dilhara Karunaratne* Senior Software Engineer | WSO2 Email: [email protected] Mob : +94 772 254 810 Blog : http://isurad.blogspot.com/ On Wed, Mar 1, 2017 at 3:53 PM, Omindu Rathnaweera <[email protected]> wrote: > Hi All, > > For the user self sign-up feature in IS 6.0.0, we have a requirement to > distinguish a self sign-up request from a normal user provisioning > operation. > > In IS 6.0.0 currently, a user can self sign-up using one of the following > 2 mechanisms. > > 1. Using self sign-up REST API. > 2. Using SCIM provisioning endpoints (/Me, /User) > > The self sign-up operation will be achieved by the means of an event > handler which will be triggered during PRE and POST addUser() operations. > Therefore, for any user add operation call, the self sign-up event handler > will be triggered and from the handler, we have to identify whether it is a > self -sign-up request or not. > > One possible way to achieve this is by sending a special claim along with > the UserBean and from the self sign-up event handler we check for the > mentioned claim before starting the self sign-up flow. > > Appreciate your thoughts on this. > > Thanks, > Omindu > > -- > Omindu Rathnaweera > Software Engineer, WSO2 Inc. > Mobile: +94 771 197 211 <+94%2077%20119%207211> >
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
