Hi Charitha, Sorry, I was away from office the last two days. This feature was developed as of the rfe CARBONROADMAP-6<https://wso2.org/jira/browse/CARBONROADMAP-6>. The motivation behind the rfe was to replace the chpassword.sh.
However for this function to work, the user should have an email associated with him. This can be possible by two ways as of now. 1) Directly updating the user profiles for the products having identity management feature (Identity Server is the product having that feature by default, as of now). 2) In a set up with multiple servers, with single userbase, where the email address is specified with the user. For example, take a stratos setup with multiple services. Earlier this was possible only via manager (that means, it should be SSO enabled, and Manager should be up for this functionality to work, as a mandatory service) and only for the tenant admins - now can be done through other services too. Thilina's suggestion is valid. That is in the common scenarios, the possibility to have such set up is mostly in use of the services (not stand-alone products) and IS only. However, we are merging the product and service profiles into a single profile (there is a separate thread on that) sooner. Testing this scenario in IS or (Stratos) services (with/without SSO - as it is not related to that) is straight-forward. However, to test this in AS product, you should have the shared userbase, where the users are given email addresses, through their profile as a claim (or in Stratos - stored in tenant database, for the tenant admin's email addresses). Considering the above facts, I can say that, this feature doesn't/can't completely/simply replace the use case of chpassword.sh as of now. Suggestions for improvements are welcome. Thank you. Regards, Pradeeban. On Thu, Mar 15, 2012 at 3:23 PM, Charitha Kankanamge <[email protected]>wrote: > Hi Pradeeban, > Now, we get "Forgot Password" link and a configuration file called, > email-admin-config.xml in standalone AS pack. How am I supposed to use this > feature? Where should I specify my email address? > > Thanks! > Charitha > > > > On Mon, Jan 23, 2012 at 6:35 PM, Thilina Buddhika <[email protected]>wrote: > >> >> >> On Mon, Jan 23, 2012 at 5:47 PM, Kathiravelu Pradeeban < >> [email protected]> wrote: >> >>> Hi Thilina, >>> Thanks for your thoughts. That was a pretty old rfe, to include the >>> password reset feature that we developed for Stratos, into all the products. >>> >>> CARBONROADMAP-6 <https://wso2.org/jira/browse/CARBONROADMAP-6> [We also >>> need to the password reset functionality you developed to Stratos in all >>> Carbon based products as well.. ] >>> >>> This comes for all the users and not just the admins, unlike chpassword >>> script, which is not so friendly. >>> >>> All the features added, it goes around 600 KB. Though we can't give that >>> as a reason to add unwanted features into the products, to maintain the >>> consistency across the log in pages, I feel, the "Forgot Password" link >>> should have been added to all the products, and not just IS and GS. >>> Currently the forgot.password link is added to >>> /core/org.wso2.carbon.ui/src/main/resources/web/admin/login.jsp - hence I >>> added this to the products which uses the default carbon log in page (so >>> obviously, this won't be added to LB or any similar products). >>> >>> >> If it is coming from the default UI bundles of the Carbon - Core, then it >> is not straight forward to install it as a P2 feature, unless you do some >> additional work from your code. >> >> The point I am trying to make is, we should not keep on adding features >> to products if we do not clearly see any valid use cases. Because most of >> the management consoles of standalone products ended being accessed by few >> users, not by a lot of end users like in Stratos. >> >> Thanks, >> Thilina >> >> >> >>> Thank you. >>> Regards, >>> Pradeeban. >>> >>> >>> On Mon, Jan 23, 2012 at 5:19 PM, Thilina Buddhika <[email protected]>wrote: >>> >>>> Hi Pradeeban, >>>> >>>> This feature is useful for products like IS and GS which do have a lot >>>> of interactions with end users. For example, in IS end users may directly >>>> interact with IS for OpenID, SAML2 and OAuth authentications. >>>> >>>> But if you take a product like ESB or AS, this is not that useful if >>>> you consider a real deployment. Because there will not be a large number of >>>> users who are going to access the admin console. Also given the complexity >>>> of setting this up like configuring the mail servers etc, it will not be >>>> handy in a real deployment. Also including this feature with such >>>> standalone products will increase its size unnecessarily. >>>> >>>> Ideally we should fix the existing chpasswd script to handle scenarios >>>> where the admin might have forgot his password. >>>> >>>> So my suggestion is to make this an optional feature and allow users to >>>> install it through P2 if required. But of course, we can make this part of >>>> all the Stratos services + certain products like IS and GS which do have a >>>> real end user interaction. >>>> >>>> Thanks, >>>> Thilina >>>> >>>> P.S. : I have missed this earlier thread where it was decided to >>>> include this with standalone products. >>>> >>>> On Sun, Jan 22, 2012 at 11:32 PM, Kathiravelu Pradeeban < >>>> [email protected]> wrote: >>>> >>>>> Hi, >>>>> Now all the products and services are bundled with the forgot password >>>>> feature for all the users. This is enabled by the admin.mgt component, >>>>> which depends on captcha.mgt component. Hence if you want to >>>>> include/remove >>>>> this feature, you will have to add/remove the admin.mgt and captcha.mgt >>>>> features. This was earlier available only in Stratos, for tenant admins. >>>>> Since the password reset link is sent by an email, make sure the >>>>> MailTransportSender is defined in the axis2.xml to be able to send the >>>>> email. The email body can be found at >>>>> repository/conf/email-admin-config.xml, and can be modified accordingly. >>>>> >>>>> Your user account should have a valid email associated to be able to >>>>> reset the password using this. (If not, a friendly error message will be >>>>> displayed indicating this fact.) Email is saved as a claim (EMAIL), and >>>>> users should have (and are encouraged to) updated their profile (can be >>>>> updated by an Identity Server or by Carbon with the relevant identity >>>>> features included) with an email address. >>>>> >>>>> Home <https://localhost:9443/carbon/admin/index.jsp> > My Identity > My >>>>> Profiles<https://localhost:9443/carbon/userprofile/index.jsp?region=region5&item=userprofiles_menu&ordinal=0> >>>>> > Update >>>>> Profile >>>>> >>>>> https://localhost:9443/carbon/userprofile/edit.jsp?username=admin&profile=default&fromUserMgt=true >>>>> >>>>> Thank you. >>>>> Regards, >>>>> Pradeeban. >>>>> -- >>>>> Kathiravelu Pradeeban. >>>>> Software Engineer. >>>>> WSO2 Inc. >>>>> >>>>> Blog: [Llovizna] http://kkpradeeban.blogspot.com/ >>>>> M: +94 776 477 976 >>>>> >>>>> >>>>> _______________________________________________ >>>>> Carbon-dev mailing list >>>>> [email protected] >>>>> http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev >>>>> >>>>> >>>> >>>> >>>> -- >>>> Thilina Buddhika >>>> Associate Technical Lead >>>> WSO2 Inc. ; http://wso2.com >>>> lean . enterprise . middleware >>>> >>>> phone : +94 77 44 88 727 >>>> blog : http://blog.thilinamb.com >>>> >>>> _______________________________________________ >>>> Carbon-dev mailing list >>>> [email protected] >>>> http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev >>>> >>>> >>> >>> >>> -- >>> Kathiravelu Pradeeban. >>> Software Engineer. >>> Cloud Technologies Team. >>> WSO2 Inc. >>> >>> Blog: [Llovizna] http://kkpradeeban.blogspot.com/ >>> M: +94 776 477 976 >>> >>> >>> _______________________________________________ >>> Carbon-dev mailing list >>> [email protected] >>> http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev >>> >>> >> >> >> -- >> Thilina Buddhika >> Associate Technical Lead >> WSO2 Inc. ; http://wso2.com >> lean . enterprise . middleware >> >> phone : +94 77 44 88 727 >> blog : http://blog.thilinamb.com >> >> _______________________________________________ >> Carbon-dev mailing list >> [email protected] >> http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev >> >> > -- Kathiravelu Pradeeban. Software Engineer. Cloud Technologies Team. WSO2 Inc. Blog: [Llovizna] http://kkpradeeban.blogspot.com/ M: +94 776 477 976
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
