+ architecture
---------- Forwarded message ---------
From: Hasunie Adikari <hasu...@wso2.com>
Date: Tue, Jul 30, 2019 at 3:16 PM
Subject: Re: Updated invitation: [Design-review] Basic authentication
support in API Micr... @ Tue Jul 30, 2019 1pm - 2pm (IST) (APIM Team)
To: APIM Team <apim-gr...@wso2.com>
Cc: Nuwan Dias <nuw...@wso2.com>, Rajith Roshan <raji...@wso2.com>, Chamod
Samarajeewa <cha...@wso2.com>, Praminda Jayawardana <prami...@wso2.com>,
Viraj Gamage <vir...@wso2.com>, Dushan Silva <dush...@wso2.com>, Pubudu
Gunatilaka <pubu...@wso2.com>
Please find the meeting notes.
1. Besides the config based authentication, we are about to support the
LDAP/AD user store based authentication. Hence separate the approaches
through the micro-gw.conf as shown below.
[basicAuthenticationConfig]
userStoretype = "config"
#userStoretype = "ldap"
2. Discussed a way we support third-party identity providers. It is a
competitive feature, hence prioritized it and planned to engage a handler
to cater to the requirement.
3. New config entry should be introduced to differentiate the WSO2 KM and
an external introspect endpoint as shown below.
[keyManager]
type="wso2"
#type="other"
Regards,
Hasunie
On Tue, Jul 30, 2019 at 10:54 AM Hasunie Adikari <hasu...@wso2.com> wrote:
> *This event has been changed.*
> more details »
> <https://www.google.com/calendar/event?action=VIEW&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0>
> [Design-review] Basic authentication support in API Microgateway
>
> *When*
> *Changed: *Tue Jul 30, 2019 1pm – 2pm India Standard Time - Colombo
> *Where*
> *Changed: *LK 6th Floor Meeting Room - Dijkstra Ext:1005650 (map
> <https://www.google.com/maps/search/LK+6th+Floor+Meeting+Room+-+Dijkstra+Ext:1005650?hl=en>
> )
> *Calendar*
> APIM Team
> *Who*
> •
> Hasunie Adikari - organizer
> •
> Nuwan Dias
> •
> Rajith Roshan
> •
> Viraj Gamage
> •
> Chamod Samarajeewa
> •
> prami...@wso2.com
> •
> APIM Team
> •
> Pubudu Gunatilaka
> •
> Dushan Silva
> I have been working on basic authentication support in WSO2 API
> microgateway. We already have implemented the config based authentication
> approach. The user should be benefited the basic authentication against the
> user store configured in the key manager.
>
>
> Points to be discussed :
>
> 1.) When we inject the LDAP user store with ballerina handlers, eventually
> the micro-gw directly contacts the LDAP and authenticate the request.
> Need to make sure the approach because most of the time, gateway won't
> share user stores.
>
> 2.) What would be the scenario like someone use an external identity
> provider to authenticate the requests?
>
> Going (apim-gr...@wso2.com)? *Yes
> <https://www.google.com/calendar/event?action=RESPOND&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&rst=1&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0>
> - Maybe
> <https://www.google.com/calendar/event?action=RESPOND&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&rst=3&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0>
> - No
> <https://www.google.com/calendar/event?action=RESPOND&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&rst=2&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0>*
> more options »
> <https://www.google.com/calendar/event?action=VIEW&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0>
>
> Invitation from Google Calendar <https://www.google.com/calendar/>
>
> You are receiving this courtesy email at the account apim-gr...@wso2.com
> because you are an attendee of this event.
>
> To stop receiving future updates for this event, decline this event.
> Alternatively you can sign up for a Google account at
> https://www.google.com/calendar/ and control your notification settings
> for your entire calendar.
>
> Forwarding this invitation could allow any recipient to send a response to
> the organizer and be added to the guest list, or invite others regardless
> of their own invitation status, or to modify your RSVP. Learn More
> <https://support.google.com/calendar/answer/37135#forwarding>.
>
--
*Hasunie Adikari*
Associate Technical Lead
WSO2 Inc.; http://wso2.com
lean.enterprise.middleware
blog http://hasuniea.blogspot.com | https://medium.com/@Hasunie/
Mobile:+94713095876
--
*Hasunie Adikari*
Associate Technical Lead
WSO2 Inc.; http://wso2.com
lean.enterprise.middleware
blog http://hasuniea.blogspot.com | https://medium.com/@Hasunie/
Mobile:+94713095876
_______________________________________________
Architecture mailing list
Architecture@wso2.org
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
