Looks like we have a problem. The SAML bearer grant seems to be checking for an IDP when trying to validate the SAML token. IMO ideally it should only be verifying the signature instead of checking for an IDP. Which would only require the SAML token issuer's public cert to be imported to API Manager. Since its not possible to change the design of the grant type, we'll try to get this issue sorted.
On Thu, Feb 2, 2017 at 1:04 PM, Nadeesha Gamage <[email protected]> wrote: > Noted, I am referring to the following documentation of SAML Extension > Grant [1], the document should also be updated to reflect this. > > [1] https://docs.wso2.com/display/AM210/SAML+Extension+Grant > > Thank you, > Nadeesha > > On Thu, Feb 2, 2017 at 12:59 PM, Nuwan Dias <[email protected]> wrote: > >> Hi Nadeesha, >> >> You shouldn't be adding IDPs on APIM. APIM doesn't support the full >> functionality of managing IDPs. You should be using IS for that. The UI in >> the management console appears right now since its coupled with some other >> features, ideally it should be taken off. >> >> Thanks, >> NuwanD. >> >> On Thu, Feb 2, 2017 at 12:53 PM, Nadeesha Gamage <[email protected]> >> wrote: >> >>> Hi all, >>> API Manager throws the following error when adding a new Identity Server >>> >>> [2017-02-02 12:49:56,125] ERROR - IdentityProviderManager Error while >>> adding Identity provider in tenantDomain : carbon.super >>> org.wso2.carbon.idp.mgt.IdentityProviderManagementException: Metadata >>> Converter is not set >>> ... >>> [2017-02-02 12:49:56,180] ERROR - IdentityProviderMgtServiceClient >>> Error in adding a Identity Provider for a given tenant >>> org.wso2.carbon.idp.mgt.stub.IdentityProviderMgtServiceIdent >>> ityProviderManagementExceptionException: IdentityProviderMgtServiceIden >>> tityProviderManagementExceptionExcep >>> >>> >>> This is observed in RC3 as well. >>> >>> Thank you, >>> Nadeesha >>> >>> >>> >>> On Thu, Feb 2, 2017 at 10:39 AM, Malintha Amarasinghe < >>> [email protected]> wrote: >>> >>>> Hi All, >>>> >>>> We are calling off the vote due to a security fix identified. >>>> >>>> We will do RC5 as soon as possible. >>>> >>>> Thanks! >>>> Malintha >>>> >>>> On Wed, Feb 1, 2017 at 10:36 AM, Lakmali Baminiwatta <[email protected]> >>>> wrote: >>>> >>>>> Tested below scenarios for ST and tenants. >>>>> >>>>> 1. JWT token >>>>> 2. Authorization code grant type >>>>> 3. Implicit grant type >>>>> 4. Password grant type >>>>> 5. Scopes >>>>> 6. SaaS Apps >>>>> 7. API Walkthrough >>>>> >>>>> [+] Stable - Go ahead and release >>>>> >>>>> >>>>> On 1 February 2017 at 07:07, Isuru Haththotuwa <[email protected]> >>>>> wrote: >>>>> >>>>>> Tested the following: >>>>>> >>>>>> 1. Basic API creation, updating, subscription and invocation flows >>>>>> 2. Workflows for application creation and API subscription >>>>>> >>>>>> [+] Stable - go ahead and release >>>>>> >>>>>> On Mon, Jan 30, 2017 at 10:28 PM, Malintha Amarasinghe < >>>>>> [email protected]> wrote: >>>>>> >>>>>>> Hi All, >>>>>>> >>>>>>> This is the 4th Release Candidate of WSO2 API Manager 2.1.0 >>>>>>> >>>>>>> Please download, test the product and vote. The vote will be open >>>>>>> for 72 hours or as needed. >>>>>>> >>>>>>> Source and distribution >>>>>>> >>>>>>> Run-time : https://github.com/wso2/prod >>>>>>> uct-apim/releases/download/v2.1.0-rc4/wso2am-2.1.0-RC4.zip >>>>>>> Analytics : https://github.com/wso2/anal >>>>>>> ytics-apim/releases/download/v2.1.0-rc3/wso2am-analytics-2.1 >>>>>>> .0-RC3.zip >>>>>>> Tooling : https://github.com/wso2/devs >>>>>>> tudio-tooling-apim/releases/tag/v2.1.0-rc2 >>>>>>> >>>>>>> >>>>>>> This release fixes the following issues: >>>>>>> Runtime : https://wso2.org/jira/issues/?filter=13623 >>>>>>> Analytics : https://wso2.org/jira/issues/?filter=13624 >>>>>>> Tooling : https://wso2.org/jira/browse/DEVTOOLAPI-1 >>>>>>> >>>>>>> >>>>>>> Please vote as follows. >>>>>>> [+] Stable - go ahead and release >>>>>>> [-] Broken - do not release (explain why) >>>>>>> >>>>>>> Thanks, >>>>>>> - WSO2 API Manager Team - >>>>>>> >>>>>>> -- >>>>>>> Malintha Amarasinghe >>>>>>> Software Engineer >>>>>>> *WSO2, Inc. - lean | enterprise | middleware* >>>>>>> http://wso2.com/ >>>>>>> >>>>>>> Mobile : +94 712383306 <+94%2071%20238%203306> >>>>>>> >>>>>>> _______________________________________________ >>>>>>> Architecture mailing list >>>>>>> [email protected] >>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> Thanks and Regards, >>>>>> >>>>>> Isuru H. >>>>>> +94 716 358 048 <+94%2071%20635%208048>* <http://wso2.com/>* >>>>>> >>>>>> >>>>>> >>>>>> _______________________________________________ >>>>>> Architecture mailing list >>>>>> [email protected] >>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>> >>>>>> >>>>> >>>>> >>>>> -- >>>>> Lakmali Baminiwatta >>>>> Associate Technical Lead >>>>> WSO2, Inc.: http://wso2.com >>>>> lean.enterprise.middleware >>>>> mobile: +94 71 2335936 >>>>> blog : lakmali.com >>>>> >>>>> >>>>> _______________________________________________ >>>>> Architecture mailing list >>>>> [email protected] >>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>> >>>>> >>>> >>>> >>>> -- >>>> Malintha Amarasinghe >>>> Software Engineer >>>> *WSO2, Inc. - lean | enterprise | middleware* >>>> http://wso2.com/ >>>> >>>> Mobile : +94 712383306 <+94%2071%20238%203306> >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> Nadeesha Gamage >>> Associate Technical Lead - Solutions Engineering >>> T : +94 77 394 5706 <+94%2077%20394%205706> >>> B : https://nadeesha678.wordpress.com/ >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> Nuwan Dias >> >> Software Architect - WSO2, Inc. http://wso2.com >> email : [email protected] >> Phone : +94 777 775 729 <+94%2077%20777%205729> >> > > > > -- > Nadeesha Gamage > Associate Technical Lead - Solutions Engineering > T : +94 77 394 5706 <+94%2077%20394%205706> > B : https://nadeesha678.wordpress.com/ > -- Nuwan Dias Software Architect - WSO2, Inc. http://wso2.com email : [email protected] Phone : +94 777 775 729
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
