Hi Sameera, I shared the /_system/config as well and I am able to log in as a tenant. But I couldn't log in when sso is enabled. I have even changed the config file (publisher.json) in the tenant space. Is there any other configuration I have to change.
I have a shared user database between ES and IS and ES is pointing to IS's embedded LDAP Thanks Senduran On Thu, Jan 8, 2015 at 7:44 AM, Senduran Balasubramaniyam <[email protected] > wrote: > Thanks Sameera, > > Is this coping happens when creating the tenant or during the first login ? > > Thanks > Senduran > > On Wed, Jan 7, 2015 at 9:27 PM, Sameera Medagammaddegedara < > [email protected]> wrote: > >> Hi Senduran, >> >> The publisher.json and store.json files are copied per tenant to the >> _system/config path.As a result the IDP url must be edited for each tenant. >> >> Thank You, >> Sameera >> >> On Wed, Jan 7, 2015 at 6:05 AM, Senduran Balasubramaniyam < >> [email protected]> wrote: >> >>> Thanks Sameera, SameeraM >>> >>> I changed the “identityProviderURL” in >>> /_system/config/publisher/configs/publisher.json, and store.json to point >>> to the IS server and SSO among ESB, publisher, store is working now (as >>> admin). >>> >>> But when I create a tenant I couldn’t login with the tenant credential, >>> I am getting the following exception in the console >>> and browser is redirect to https://localhost:9443/publisher/acs >>> >>> INFO {JAGGERY.controllers.login:jag} - Login URL: >>> https://localhost:9447/samlsso >>> org.opensaml.xml.validation.ValidationException: Signature did not validate >>> against the credential's key >>> at >>> org.opensaml.xml.signature.SignatureValidator.validate(SignatureValidator.java:78) >>> at org.wso2.store.sso.common.util.Util.validateSignature(Util.java:290) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> at java.lang.reflect.Method.invoke(Method.java:606) >>> >>> The above exception occurs only when I tried to login to publisher or >>> store with the tenant . But with a tenant, I am able to login to the ES >>> management console , ESB (sso). >>> >>> I have shared the user db and governance registry among ES, ESB and IS. >>> ES runs on the default port and IS runs on port offset 4 >>> >>> Do I need to add any additional configuration to enable sso for tenant >>> as well >>> >>> Thanks >>> Senduran >>> >>> >>> On Wed, Jan 7, 2015 at 1:34 PM, Senduran Balasubramaniyam < >>> [email protected]> wrote: >>> >>>> Hi all, >>>> >>>> I followed the document [1] and was able to enable the SSO between ESB >>>> and ES. Also I need to enable SSO between ES's Publisher, store and ESB. >>>> >>>> What is the possible way to do this >>>> >>>> [1] https://docs.wso2.com/display/IS500/Enabling+SSO+for+WSO2+Servers >>>> >>>> Thanks >>>> Senduran >>>> >>>> -- >>>> *Senduran * >>>> Software Engineer, >>>> WSO2, Inc.; http://wso2.com/ <http://wso2.com/> >>>> Mobile: +94 77 952 6548 >>>> >>> >>> >>> >>> -- >>> *Senduran * >>> Software Engineer, >>> WSO2, Inc.; http://wso2.com/ <http://wso2.com/> >>> Mobile: +94 77 952 6548 >>> >> >> >> >> -- >> Sameera Medagammaddegedara >> Software Engineer >> >> Contact: >> Email: [email protected] >> Mobile: + 94 077 255 3005 >> > > > > -- > *Senduran * > Software Engineer, > WSO2, Inc.; http://wso2.com/ <http://wso2.com/> > Mobile: +94 77 952 6548 > -- *Senduran * Software Engineer, WSO2, Inc.; http://wso2.com/ <http://wso2.com/> Mobile: +94 77 952 6548
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
