If one environment trust the user then cant we assume other environment which trust initial environment can also accept this as valid user. We can even use certificate based grant type of implementation. Then use login to one environment successfully that environment should be able to obtain token from other environments using certificate based grant by passing user name. So next environment should trust and issue token.
Thanks, sanjeewa. On Wed, Jan 24, 2018 at 2:55 PM, Renuka Fernando <[email protected]> wrote: > Hi all, > > We are going to authenticate the user to other environments via JWT grant > type [1]. > The feature is disabled by default and the below configuration is going to > be used to enable the feature. If JWT grant type is not supported by the > IDP, the user can use a similar grant as an extension point. > > # APIM Configuration Parameterswso2.carbon.apimgt: > # Environment Configurations > environmentConfigurations: > # Multi-Environment Overview Configurations > environmentOverviewConfigs: > # Multi-Environment Overview feature enabled or not > enabled: false > # Authentication Grant Type to authenticate user to other environments > authenticationGrantType: "urn:ietf:params:oauth:grant-type:jwt-bearer" > > > Appreciate any suggestions. > Thanks > > [1] see the mail on subject "[APIM 3.0.0] Authenticate a user to all > environments when login to one environment" > [2] https://github.com/wso2/product-apim/issues/2299 > > > Best regards > Renuka > > On 9 January 2018 at 16:19, Renuka Fernando <[email protected]> wrote: > >> Hi All, >> >> We are planning to implement a feature that enables the users to get the >> Multi-Environment API Overview of APIs that they are managing across multi >> environments. Please refer the GitHub issue[1]. Appreciate any >> suggestions and comment on the Github issue about your suggestions. >> >> [1] https://github.com/wso2/product-apim/issues/2299 >> >> Appreciate any suggestions. >> Thanks >> >> Best regards >> >> -- >> *Renuka Fernando* >> Software Engineering Intern | WSO2 Inc >> >> Email : [email protected] >> Mobile : +94 76 667 8752 <+94%2076%20667%208752> >> Web : http://wso2.com >> <http://wso2.com/signature> >> > > > > -- > *Renuka Fernando* > Software Engineering Intern | WSO2 Inc > > Email : [email protected] > Mobile : +94 76 667 8752 <076%20667%208752> > Web : http://wso2.com > <http://wso2.com/signature> > -- *Sanjeewa Malalgoda* WSO2 Inc. Mobile : +94713068779 <http://sanjeewamalalgoda.blogspot.com/>blog :http://sanjeewamalalgoda.blogspot.com/ <http://sanjeewamalalgoda.blogspot.com/>
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
