On Tue, Aug 30, 2016 at 12:04 PM, Sagara Gunathunga <[email protected]> wrote:
> > > On Tue, Aug 30, 2016 at 11:37 AM, Kishanthan Thangarajah < > [email protected]> wrote: > >> AS 6.0.0 is not an OSGi runtime. It's pure tomcat plus WSO2 features >> as tomcat extensions. We could reuse the code here from App Manager. >> >> @Johann/Sagara, shall we send the user attributes as JWT token to backend >> webapp? >> > > This use case is bit different from AppM where AS is the backend server > not a proxy, we don't need to generate further tokens instead we should > able to consume what ever the token (SAML or JWT) received by the web app. > At this point let's not try to complicate this task, first try to get this > done for pure SAML invocations where web app (AS) send SAML request and > receive SAML responses, then consume SAML response within the application. > SAML is just one form of authentication to the webapp right? Don't we have the usual Basic Auth based auth? If we do, how does the webapp get the required claims when going through Basic Auth? If we use a JWT based approach, we can use that as the one standard form of passing user attributes to the webapp irrespective of the authentication mechanism. > > If time permits, let's try to do the same for JWT token consumption, since > related code is already there in AppM this will be a straightforward task. > > Thanks ! > >> >> On Tue, Aug 30, 2016 at 11:27 AM, Dinusha Senanayaka <[email protected]> >> wrote: >> >>> In App Manager, we process the SAML response and add SAML response >>> assertions as JWT token and send to backend as a header. Shouldn't we try >>> to install AppM features and get the gateway features into AS without >>> redoing the same ? >>> >>> Regards, >>> Dinusha. >>> >>> On Mon, Aug 29, 2016 at 8:50 PM, Kishanthan Thangarajah < >>> [email protected]> wrote: >>> >>>> We need to send the user attributes that are returned from SAML >>>> response with the successful authentication, to the webapp using some way. >>>> We discussed whether we could send this as a session attribute or using a >>>> request parameter. >>>> >>>> @Kalpa, let's create a jira for this and add this to change to upcoming >>>> milestone release. >>>> >>>> Thanks, >>>> >>>> -- >>>> *Kishanthan Thangarajah* >>>> Technical Lead, >>>> Platform Technologies Team, >>>> WSO2, Inc. >>>> lean.enterprise.middleware >>>> >>>> Mobile - +94773426635 >>>> Blog - *http://kishanthan.wordpress.com >>>> <http://kishanthan.wordpress.com>* >>>> Twitter - *http://twitter.com/kishanthan >>>> <http://twitter.com/kishanthan>* >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> Dinusha Dilrukshi >>> Associate Technical Lead >>> WSO2 Inc.: http://wso2.com/ >>> Mobile: +94725255071 >>> Blog: http://dinushasblog.blogspot.com/ >>> >> >> >> >> -- >> *Kishanthan Thangarajah* >> Technical Lead, >> Platform Technologies Team, >> WSO2, Inc. >> lean.enterprise.middleware >> >> Mobile - +94773426635 >> Blog - *http://kishanthan.wordpress.com >> <http://kishanthan.wordpress.com>* >> Twitter - *http://twitter.com/kishanthan <http://twitter.com/kishanthan>* >> > > > > -- > Sagara Gunathunga > > Associate Director / Architect; WSO2, Inc.; http://wso2.com > V.P Apache Web Services; http://ws.apache.org/ > Linkedin; http://www.linkedin.com/in/ssagara > Blog ; http://ssagara.blogspot.com > > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- Nuwan Dias Software Architect - WSO2, Inc. http://wso2.com email : [email protected] Phone : +94 777 775 729
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
