Hi Darshana, On Wed, Apr 27, 2016 at 12:28 PM, Darshana Gunawardana <[email protected]> wrote:
> > > On Tue, Apr 26, 2016 at 5:16 PM, Dinusha Senanayaka <[email protected]> > wrote: > >> IS Team, >> >> Can you look into this issue please. This has broke the store/publisher >> tenant login (We are using identity-5.0.9-SNAPSHOT versions). >> >> - How to set fully qualified name when registering SP from config file. >> - Skip sending carbon.super when fully qualified name is enabled. >> > > Why do you want to skip sending super tenant's domain? As I understood, > app manager is a SaaS app and its ok to send super tenant's domain. It > won't be an issue if you use correct utils to extract the tenant domain. > Issues comes with the store/publisher. In previous versions we did not have carbon.super prefix in super tenant logged in users. We add subscriber name to a table based on the logged in user name. Also there are some places where we construct storage path of .apk files etc (mobile apps) using the logged in user name. There is data migration effort if we go with the carbon.super in user name in mentioned places. We could process the user name and drop carbon.super part from the user name before we add user to session. But not sure how much effort this required because we have to check ES modules references too. Therefore, it would be great if we can have the username without carbo.super prefix with super tenant users. Regards, Dinusha. > > Thanks, > >> >> Regards, >> Dinusha. >> >> On Mon, Apr 25, 2016 at 4:58 PM, Dinusha Senanayaka <[email protected]> >> wrote: >> >>> +Pushpalanka. >>> >>> On Mon, Apr 25, 2016 at 4:51 PM, Jenananthan Yogendran < >>> [email protected]> wrote: >>> >>>> Hi All, >>>> >>>> After migrating the AppManager from kernel 4.2.0 to kernel 4.4.5 , >>>> fully qualified name is not working as expected. >>>> >>>> We use file based SP configuration for Store app and Publisher >>>> app(attached sso-idp-config files used in both kernel versions). In kernel >>>> 4.2.0 , when login to store/publisher app, SAML response has user name with >>>> tenant domain as subject for tenants except carbon super tenant. >>>> >>>> After migration , SAML response has only user name as subject.Tenant >>>> domain is missing for tenants. >>>> >>>> Also when checked the option "Use tenant domain in local subject >>>> identifier" under "Local & Outbound Authentication Configuration" for >>>> SPs created through UI, it appends the "carbon.super" domain for super >>>> tenant users. >>>> >>>> Thanks >>>> -- >>>> Jenananthan Yogendran >>>> *Software Engineer,* >>>> *WSO2 inc., http://wso2.com <http://wso2.com>* >>>> >>>> >>> >>> >>> -- >>> Dinusha Dilrukshi >>> Associate Technical Lead >>> WSO2 Inc.: http://wso2.com/ >>> Mobile: +94725255071 >>> Blog: http://dinushasblog.blogspot.com/ >>> >> >> >> >> -- >> Dinusha Dilrukshi >> Associate Technical Lead >> WSO2 Inc.: http://wso2.com/ >> Mobile: +94725255071 >> Blog: http://dinushasblog.blogspot.com/ >> > > > > -- > Regards, > > > *Darshana Gunawardana*Senior Software Engineer > WSO2 Inc.; http://wso2.com > > *E-mail: [email protected] <[email protected]>* > *Mobile: +94718566859 <%2B94718566859>*Lean . Enterprise . Middleware > -- Dinusha Dilrukshi Associate Technical Lead WSO2 Inc.: http://wso2.com/ Mobile: +94725255071 Blog: http://dinushasblog.blogspot.com/
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
