On Thu, Sep 3, 2015 at 11:35 PM, Sanjeewa Malalgoda <[email protected]> wrote:
> API Manager/ APP Manager applications are super tenant deployed > multitenanted SaaS applications. > So its common to have some operations perform as admin users. Actually in > that cases application act as super users and handle tenants and other user > flows. > Correct. > So i dont see big issue with this. And We may not need call these admin > services as tenant users(users will call APIs but actual operation and > admin service call done by super tenant deployed app). > The problem is, ApplicationManagementAdminService creates SP in the logged in user's space. So if the service is invoked using Admin Credentials, then the SP will be created for Admin user. If the subscriber later happens to log into management console and change the SP, then he/she won't be able to see it. > > > Thanks, > sanjeewa. > > On Thu, Sep 3, 2015 at 10:56 PM, Amila De Silva <[email protected]> wrote: > >> Hi, >> >> If this is about calling *ApplicationManagementAdmin**Service *using >> MutualSSL, >> then still this would be only available to admin users, isn't it. A similar >> approach was attempted while trying to create SP for AM_Application, at the >> time of Generating a key. The problem was, even mutual SSL allows user to >> authenticate, since this is an admin service, users are failed at the >> authorising step unless they are admin users. >> >> On Thu, Sep 3, 2015 at 12:20 AM, Sanjeewa Malalgoda <[email protected]> >> wrote: >> >>> If you are trying to implement tenant SP creation for App manager then >>> we can easily do it using mutual SSL with tenant user name. >>> We have implemented something similar and we can share code with you >>> soon. >>> >>> Thanks, >>> sanjeewa. >>> >>> On Thu, Sep 3, 2015 at 12:13 AM, Lakshani Gamage <[email protected]> >>> wrote: >>> >>>> Hi all, >>>> >>>> I want to call "*IdentityApplicationManagementService*" admin service >>>> as a tenant user. >>>> >>>> I gave super tenant credentials to that stub and called " >>>> *createApplication*" method by changing tenant flow. But still the SP >>>> is created in ST space. >>>> >>>> If you have any idea, how to call this Service as a tenant user, Please >>>> share it. >>>> >>>> Thanks, >>>> Lakshani >>>> >>>> >>>> >>>> -- >>>> Lakshani Gamage >>>> >>>> *Software Engineer* >>>> Mobile : +94 (0) 71 5478184 <%2B94%20%280%29%20773%20451194> >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> >>> *Sanjeewa Malalgoda* >>> WSO2 Inc. >>> Mobile : +94713068779 >>> >>> <http://sanjeewamalalgoda.blogspot.com/>blog >>> :http://sanjeewamalalgoda.blogspot.com/ >>> <http://sanjeewamalalgoda.blogspot.com/> >>> >>> >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> *Amila De Silva* >> >> WSO2 Inc. >> mobile :(+94) 775119302 >> >> > > > -- > > *Sanjeewa Malalgoda* > WSO2 Inc. > Mobile : +94713068779 > > <http://sanjeewamalalgoda.blogspot.com/>blog > :http://sanjeewamalalgoda.blogspot.com/ > <http://sanjeewamalalgoda.blogspot.com/> > > > -- *Amila De Silva* WSO2 Inc. mobile :(+94) 775119302
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
