Hi All, I have tested the following scenarios and it works as expected, +1 to go ahead and release.
- Basic functionality with EmailOTP (Basic authenticator/Federated Authenticator as first step and EmailOTP as the second step) with secondary user stores. - EmailOTP with Email Templates - X509 with basic functionality - Account locking by failed login attempts - User Self Registration Thanks Kanapriya Kuleswararajan Senior Software Engineer Mobile : - 0774894438 Mail : - [email protected] LinkedIn : - https://www.linkedin.com/in/kanapriya-kules-94712685/ WSO2, Inc. lean . enterprise . middleware On Fri, Oct 4, 2019 at 1:21 AM Pamoda Wimalasiri <[email protected]> wrote: > Hi all, > > I tested the following scenarios on IS-5.9.0-RC2 with MySQL database. > > - Viewing, terminating sessions from the user portal > - Create a service provider, configure SAML SSO, authenticate with > Basic Authenticator for travelocity app > - Create, retrieve and delete Oauth2 app using dcr endpoint > - Configure a federated Identity provider with facebook configuration > - Federated Authentication with facebook > - JIT provisioning with facebook as federated IdP > - Multi option login with basic authenticator and facebook IdP > - Multi-step login with basic authenticator and facebook IdP > - Role-based adaptive authentication > > No blocking issues found. > > [+] Stable - Go ahead and release > > Thanks, > Pamoda > > On Fri, Oct 4, 2019 at 12:24 AM Ayesha Dissanayaka <[email protected]> > wrote: > >> Hi, >> >> As I was able to perform the following tests successfully on >> IS-5.9.0-RC2, +1 to go ahead and release. >> >> User self-registration with email confirmation >> >> Username Recovery >> >> Password Recovery >> >> Email OTP >> >> OIDC - auth code flow >> User challenges - self-care REST API >> Browsing management console >> >> [+] Stable - Go ahead and release >> >> Thanks! >> -Ayesha >> >> >> On Thu, Oct 3, 2019 at 10:51 PM Gayashan Bombuwala <[email protected]> >> wrote: >> >>> Hi all, >>> >>> Tested below scenarios on IS 5.9.0-RC2 pack. >>> >>> - SAML2 Bearer Assertion Profile for OAuth 2.0 >>> - Federated authentication with a second instance of IS as the >>> Identity Provider. >>> - JIT provisioning with a second instance of IS as the Identity >>> Provider. >>> >>> No blocking issues found. >>> >>> [+] Stable - Go ahead and release >>> >>> Best regards, >>> Gayashan. >>> >>> On Thu, Oct 3, 2019 at 9:16 PM Vihanga Liyanage <[email protected]> >>> wrote: >>> >>>> Hi all, >>>> >>>> Tested below scenarios on IS 5.9.0-RC2 pack using the Postgresql >>>> database. >>>> >>>> - Add service provider, configured SAML SSO, authenticate with *the >>>> dispatch *sample web app. >>>> - Add new SP with Open ID OAuth/OpenID Connect Configuration and >>>> authenticate with *the playground *sample web app. >>>> - Tested all OAuth/OIDC grant types. >>>> - Manipulated email templates with I18nEmailMgtConfigService admin >>>> service. >>>> >>>> No blocking issues found. >>>> >>>> [+] Stable - Go ahead and release >>>> >>>> Best regards, >>>> Vihanga. >>>> >>>> On Thu, Oct 3, 2019 at 3:45 PM Ashen Weerathunga <[email protected]> >>>> wrote: >>>> >>>>> Hi All, >>>>> >>>>> I have tested the following scenarios and no blocking issues found. >>>>> >>>>> - SSO with SAML >>>>> - Federated authentication with Google >>>>> - Federated authentication with Facebook >>>>> - SSO with multi-option and multi-step authentication >>>>> - Role-based Adaptive authentication >>>>> >>>>> [+] Stable - go ahead and release >>>>> >>>>> Thanks, >>>>> Ashen >>>>> >>>>> >>>>> On Thu, Oct 3, 2019 at 2:34 PM Shanika Wickramasinghe < >>>>> [email protected]> wrote: >>>>> >>>>>> Hi All, >>>>>> >>>>>> I have tested the following features and no issues found >>>>>> >>>>>> Ubuntu 16.04 | MSSQL | Embedded Ldap Primary User Store | Super Tenant >>>>>> >>>>>> >>>>>> - >>>>>> >>>>>> Manage roles with SCIM 2.0 Create Group, Delete Group, Filter >>>>>> Groups, Search Groups, Update Group - PATCH, Update Group - PUT >>>>>> - >>>>>> >>>>>> Manage users with SCIM 2.0 Create User Delete User by ID Filter >>>>>> Users Search Users Update User - PATCH Update User - PUT >>>>>> - >>>>>> >>>>>> Recover Username with dashboard >>>>>> - >>>>>> >>>>>> Recover Password with dashboard >>>>>> >>>>>> >>>>>> Ubuntu 16.04 | MSSQL | SecondaryUser Store | Super Tenant >>>>>> >>>>>> >>>>>> - >>>>>> >>>>>> SP pagination with UI >>>>>> - >>>>>> >>>>>> SP pagination with Admin Services >>>>>> - >>>>>> >>>>>> Account Lock >>>>>> - >>>>>> >>>>>> Recaptcha with Single Sign On >>>>>> >>>>>> >>>>>> Ubuntu 16.04 | H2/MSSQL | Embedded Ldap Primary User Store | Super >>>>>> Tenant >>>>>> >>>>>> >>>>>> - >>>>>> >>>>>> Manage Workflows >>>>>> >>>>>> >>>>>> Ubuntu 16.04 | H2 | Embedded Ldap Primary User Store | Super Tenant >>>>>> >>>>>> >>>>>> - >>>>>> >>>>>> Manage Workflows with QSG sample >>>>>> - >>>>>> >>>>>> User self-registration via REST APIs >>>>>> - >>>>>> >>>>>> User self-registration via user portal >>>>>> - >>>>>> >>>>>> User manage his own user account, Update user profile >>>>>> - >>>>>> >>>>>> OAuth 1.0 SP Creation/ Update >>>>>> >>>>>> >>>>>> +1 Go ahead and release. >>>>>> >>>>>> >>>>>> Thanks, >>>>>> >>>>>> Shanika >>>>>> >>>>>> On Thu, Oct 3, 2019 at 9:16 AM Achini Jayasena <[email protected]> >>>>>> wrote: >>>>>> >>>>>>> Hi All, >>>>>>> >>>>>>> Tested and verified with performance test and long running test. >>>>>>> Test result match with the expectations. >>>>>>> >>>>>>> *Performance test* >>>>>>> >>>>>>> Summary*: *Performance has been improved comparing to the product >>>>>>> version 5.8 >>>>>>> >>>>>>> Deployment >>>>>>> >>>>>>> - OS: Ubuntu >>>>>>> - DB: Mysql >>>>>>> - Heap: 4G/2G >>>>>>> - CPU cores: 4 >>>>>>> - Concurrent users: 50, 100, 150, 300, 500 >>>>>>> >>>>>>> Scenarios: >>>>>>> >>>>>>> - Authenticate_Super_Tenant_User >>>>>>> - OAuth_AuthCode_Redirect_WithConsent >>>>>>> - OAuth_Client_Credentials_Grant >>>>>>> - OAuth_Implicit_Redirect_WithConsent >>>>>>> - OAuth_Password_Grant >>>>>>> - OIDC_AuthCode_Redirect_WithConsent >>>>>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent >>>>>>> - OIDC_Implicit_Redirect_WithConsent >>>>>>> - OIDC_Password_Grant >>>>>>> - SAML2_SSO_Redirect_Binding >>>>>>> - Challenge questions by super tenant users >>>>>>> - Refresh token refresh grant - Renewal false >>>>>>> >>>>>>> *Long running test* >>>>>>> >>>>>>> Summery*: *No issue reported. >>>>>>> >>>>>>> Deployment : >>>>>>> >>>>>>> - IS node >>>>>>> - Instance type: c5.xlarge >>>>>>> - vCPU:4 >>>>>>> - RAM: 8GB >>>>>>> - Heap: 2G allocated for IS >>>>>>> >>>>>>> >>>>>>> - RDS as the MySQL DB >>>>>>> - Mysql engine version : 5.7.22 >>>>>>> - vCPU: 4 >>>>>>> - Instance class : db.m4.xlarge >>>>>>> - RAM: 16 GB >>>>>>> - Storage: 100 GiB >>>>>>> - Executing test scenarios: >>>>>>> - Authenticate_Super_Tenant_User >>>>>>> - OAuth_AuthCode_Redirect_WithConsent >>>>>>> - OAuth_Password_Grant >>>>>>> - OIDC_AuthCode_Redirect_WithConsent >>>>>>> - OIDC_Implicit_Redirect_WithConsent >>>>>>> - OIDC_Password_Grant >>>>>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent >>>>>>> - SAML2_SSO_Redirect_Binding >>>>>>> - Concurrency : 20 >>>>>>> - TPS: 240 per minute >>>>>>> >>>>>>> No blocking issue reported. +1 for proceed. :) >>>>>>> >>>>>>> >>>>>>> *Thanks & Best Regards!* >>>>>>> >>>>>>> *Achini Jayasena* >>>>>>> *Software Engineer - QA | WSO2* >>>>>>> >>>>>>> Email: [email protected] >>>>>>> Mobile: +94 713 882 897 >>>>>>> >>>>>>> [image: http://wso2.com/signature] <http://wso2.com/signature> >>>>>>> >>>>>>> >>>>>>> On Wed, Oct 2, 2019 at 10:31 PM Mathuriga Thavarajah < >>>>>>> [email protected]> wrote: >>>>>>> >>>>>>>> Hi All, >>>>>>>> >>>>>>>> Security Scanning reports (Static and Dynamic) were analyzed and >>>>>>>> reviewed. Hence +1 from the Platform Security Team for proceeding with >>>>>>>> the release. >>>>>>>> >>>>>>>> Thanks. >>>>>>>> >>>>>>>> Regards, >>>>>>>> Mathuriga. >>>>>>>> >>>>>>>> On Wed, Oct 2, 2019 at 10:08 PM Niluka Sripali Monnankulama < >>>>>>>> [email protected]> wrote: >>>>>>>> >>>>>>>>> Hi all, >>>>>>>>> >>>>>>>>> >>>>>>>>> Verified and validated below listed features are working as >>>>>>>>> expected. >>>>>>>>> >>>>>>>>> >>>>>>>>> Test Environment OS- MAC O/S, Windows-Server-2016-standard-64bit >>>>>>>>> >>>>>>>>> Java version- 1.8.0_171, 11.0.4 >>>>>>>>> >>>>>>>>> Database - H2, Oracle 12c >>>>>>>>> >>>>>>>>> User type, Primary, Secondary, Super user and Tenant user >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> - User management with multilayer approval >>>>>>>>> - Manage user stores(Create,update,delete,disable) >>>>>>>>> - Configuring Claims for a Service Provider >>>>>>>>> - Consent Management for Self Sign Up >>>>>>>>> - Single Sign-On / Federated authentication for a web >>>>>>>>> application with SAML - SP-Init, IDP-Init >>>>>>>>> - SAML2 IdP Initiated Single Logout >>>>>>>>> >>>>>>>>> Front channel post binding >>>>>>>>> Front channel redirect binding >>>>>>>>> Backchannel >>>>>>>>> >>>>>>>>> - SAML SSO with end-user consent and claim mapping >>>>>>>>> - Add a custom claim to OIDC >>>>>>>>> - Adding Multiple Federated authenticators >>>>>>>>> - By-parsing the IS authenticator selection page >>>>>>>>> - Identity Analytics-SSO analyzed via WSO2 IS Analytics. >>>>>>>>> - QSG- Self signup, workflow management >>>>>>>>> - JIT provision >>>>>>>>> - Ask Password >>>>>>>>> - Add Email template >>>>>>>>> - Connectors- GITHUB, LinkedIn, Google >>>>>>>>> - Installing as a Windows Service (Java version- 1.8.0_171) >>>>>>>>> - REST APIs for the user portal >>>>>>>>> >>>>>>>>> Account Recovery - Update challenge questions >>>>>>>>> answers >>>>>>>>> >>>>>>>>> Authorized OAuth Apps - List and revoke >>>>>>>>> >>>>>>>>> User session management >>>>>>>>> >>>>>>>>> Pending Approvals >>>>>>>>> >>>>>>>>> >>>>>>>>> +1 to proceed. >>>>>>>>> >>>>>>>>> On Wed, Oct 2, 2019 at 4:26 PM Buddhima Udaranga < >>>>>>>>> [email protected]> wrote: >>>>>>>>> >>>>>>>>>> Hi, >>>>>>>>>> >>>>>>>>>> We have tested the Configuration Management REST API with the >>>>>>>>>> WSO2 IS 5.9.0-RC2 with the MySQL database. No blocker issues found. >>>>>>>>>> +1 to >>>>>>>>>> proceed. >>>>>>>>>> >>>>>>>>>> Thanks, >>>>>>>>>> *Buddhima Udaranga*|Software Engineer| WSO2 Inc. >>>>>>>>>> <http://wso2.com/> >>>>>>>>>> (M)+94 714742094 | (E) [email protected] >>>>>>>>>> <https://wso2.com/signature> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> On Wed, Oct 2, 2019 at 10:59 AM Piraveena Paralogarajah < >>>>>>>>>> [email protected]> wrote: >>>>>>>>>> >>>>>>>>>>> Hi all, >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> We are pleased to announce the second release candidate of WSO2 >>>>>>>>>>> Identity Server 5.9.0. >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> New Features >>>>>>>>>>> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> An improved, simpler configuration model >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> RESTful APIs for user self-services >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> Passwordless authentication with WebAuthn >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> Reusable script library for adaptive authentication >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> Cross-protocol single logout capability >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> Inbuilt support to view and revoke user sessions >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> Azure AD/Office365 multi-domain federation support >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> Fixes >>>>>>>>>>> >>>>>>>>>>> This release includes the following issue fixes and >>>>>>>>>>> improvements: >>>>>>>>>>> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-m1 >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/85?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-m2 >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/86?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-m3 >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/87?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-m4 >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/88?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-m5 >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/90?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-m6 >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/91?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-alpha >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/89?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-beta >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/93?closed=1> >>>>>>>>>>> - >>>>>>>>>>> >>>>>>>>>>> 5.9.0-GA >>>>>>>>>>> <https://github.com/wso2/product-is/milestone/83?closed=1> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> Source and Distribution >>>>>>>>>>> >>>>>>>>>>> The source and distribution >>>>>>>>>>> <https://github.com/wso2/product-is/releases/download/v5.9.0-rc2/wso2is-5.9.0-rc2.zip> >>>>>>>>>>> are available at >>>>>>>>>>> https://github.com/wso2/product-is/releases/tag/v5.9.0-rc2 >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> Please download the product, test it, and vote using the >>>>>>>>>>> following convention. >>>>>>>>>>> >>>>>>>>>>> [+] Stable - go ahead and release >>>>>>>>>>> >>>>>>>>>>> [-] Broken - do not release (explain why) >>>>>>>>>>> >>>>>>>>>>> Thanks, >>>>>>>>>>> >>>>>>>>>>> WSO2 Identity and Access Management Team >>>>>>>>>>> >>>>>>>>>>> *Piraveena Paralogarajah* >>>>>>>>>>> Software Engineer | WSO2 Inc. >>>>>>>>>>> *(m)* +94776099594 | *(e)* [email protected] >>>>>>>>>>> >>>>>>>>>>> _______________________________________________ >>>>>>>>>> Dev mailing list >>>>>>>>>> [email protected] >>>>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> -- >>>>>>>>> Niluka Sripali Monnankulama >>>>>>>>> Software Engineer - WSO2 Sri Lanka >>>>>>>>> >>>>>>>>> Mobile : +94 76 76 52843 >>>>>>>>> >>>>>>>>> _______________________________________________ >>>>>>>>> Dev mailing list >>>>>>>>> [email protected] >>>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> -- >>>>>>>> >>>>>>>> *Mathuriga Thavarajah* >>>>>>>> Software Engineer >>>>>>>> WSO2 Inc. - http ://wso2.com >>>>>>>> >>>>>>>> Email : [email protected] >>>>>>>> Mobile : +94778191300 >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> *[image: http://wso2.com/signature] <http://wso2.com/signature>* >>>>>>>> _______________________________________________ >>>>>>>> Dev mailing list >>>>>>>> [email protected] >>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>>> >>>>>>> >>>>>> >>>>>> -- >>>>>> *Shanika Wickramasinghe* >>>>>> Software Engineer - QA Team >>>>>> >>>>>> Email : [email protected] >>>>>> Mobile : +94713503563 >>>>>> Web : http://wso2.com >>>>>> >>>>>> <http://wso2.com/signature> >>>>>> >>>>> >>>>> >>>>> -- >>>>> Ashen Weerathunga | Senior Software Engineer | WSO2 Inc. >>>>> (m) +94716042995 | (w) +94112145345 | Email: [email protected] >>>>> <http://wso2.com/signature> >>>>> >>>>> >>>>> _______________________________________________ >>>>> Dev mailing list >>>>> [email protected] >>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>> >>>> >>>> >>>> -- >>>> >>>> Vihanga Liyanage >>>> >>>> Software Engineer | WS*O₂* Inc. >>>> >>>> M : +*94710124103* | http://wso2.com >>>> >>>> [image: http://wso2.com/signature] <http://wso2.com/signature> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>> >>> >>> -- >>> *Gayashan Bombuwala* >>> Software Engineer | WSO2 >>> >>> Email: [email protected] >>> Phone: +94770548334 >>> >>> [image: https://wso2.com/signature] <https://wso2.com/signature> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >> >> >> -- >> *Ayesha Dissanayaka* >> Associate Technical Lead >> WSO2, Inc : http://wso2.com >> <http://www.google.com/url?q=http%3A%2F%2Fwso2.com&sa=D&sntz=1&usg=AFQjCNEZvyc0uMD1HhBaEGCBxs6e9fBObg> >> 20, Palm grove Avenue, Colombo 3 >> E-Mail: [email protected] <[email protected]> >> Mobile: +94713580922 >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> > > > -- > *Pamoda Wimalasiri | *Software Engineer | WSO2 Inc. > (m) +94713705814 | (w) +94112145345 | (e) [email protected] > > <http://wso2.com/signature> > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev >
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
