Hi Dilshani, SAML grant does not depend on client_credentials grant being enabled, but in store UI when we generate keys using the Generate Keys button, client_credentials grant is used to generate the token. Therefore you have to enable client_credentials grant if you are generating keys via UI. I think this is what Hrasha meant.
On Thu, Nov 9, 2017 at 12:20 AM, Dilshani Subasinghe <[email protected]> wrote: > Hi Harsha, > > Thanks for prompt reply. Will follow that. Hope we need to specify that > client_credentials grant need for enabling SAML grant in the documentation. > > Regards, > Dilshani > > On Thu, Nov 9, 2017 at 12:08 AM, Harsha Kumara <[email protected]> wrote: > >> Hi Dilshani, >> >> If you need to generate a token using SAML2 grant you may follow [1]. In >> store, you need to select client_credentials grant as we used it in the >> store to generate the token for an application. >> >> [1] https://docs.wso2.com/display/AM1100/Exchanging+SAML2+ >> Bearer+Tokens+with+OAuth2+-+SAML+Extension+Grant+Type >> >> On Thu, Nov 9, 2017 at 12:01 AM, Dilshani Subasinghe <[email protected]> >> wrote: >> >>> Hi APIM/IS Team, >>> >>> I'm working with IS as Key manager setup. (APIM 2.1.0 and >>> wso2is-km-5.3.0). In APIM, while generating keys for Applications with >>> "SAML" as grant type, it may give an error as follows [1]: >>> >>> [2017-11-08 23:51:34,102] ERROR - APIUtil Error occurred while executing >>> SubscriberKeyMgtClient. >>> java.lang.RuntimeException: Error occurred while calling token endpoint: >>> HTTP error code : 400 >>> at org.wso2.carbon.apimgt.impl.AMDefaultKeyManagerImpl.getNewAp >>> plicationAccessToken(AMDefaultKeyManagerImpl.java:367) >>> at org.wso2.carbon.apimgt.impl.workflow.AbstractApplicationRegi >>> strationWorkflowExecutor.dogenerateKeysForApplication(Abstra >>> ctApplicationRegistrationWorkflowExecutor.java:151) >>> at org.wso2.carbon.apimgt.impl.workflow.AbstractApplicationRegi >>> strationWorkflowExecutor.generateKeysForApplication(Abstract >>> ApplicationRegistrationWorkflowExecutor.java:118) >>> at org.wso2.carbon.apimgt.impl.workflow.ApplicationRegistration >>> SimpleWorkflowExecutor.complete(ApplicationRegistrationSimpl >>> eWorkflowExecutor.java:78) >>> at org.wso2.carbon.apimgt.impl.workflow.ApplicationRegistration >>> SimpleWorkflowExecutor.execute(ApplicationRegistrationSimple >>> WorkflowExecutor.java:54) >>> at org.wso2.carbon.apimgt.impl.APIConsumerImpl.requestApprovalF >>> orApplicationRegistration(APIConsumerImpl.java:2789) >>> at org.wso2.carbon.apimgt.impl.UserAwareAPIConsumer.requestAppr >>> ovalForApplicationRegistration(UserAwareAPIConsumer.java:36) >>> at org.wso2.carbon.apimgt.hostobjects.APIStoreHostObject.jsFunc >>> tion_getApplicationKey(APIStoreHostObject.java:385) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at sun.reflect.NativeMethodAccessorIm >>> >>> Any idea on the issue? >>> >>> [1] error.png >>> >>> Thanks, >>> Dilshani >>> >>> -- >>> >>> Dilshani Subasinghe >>> Software Engineer - QA *|* WSO2 >>> lean *|* enterprise *|* middleware >>> >>> Mobile : +94773375185 <+94%2077%20337%205185> >>> Blog : dilshani.me >>> >>> <https://wso2.com/signature> >>> >> >> >> >> -- >> Harsha Kumara >> Software Engineer, WSO2 Inc. >> Mobile: +94775505618 <+94%2077%20550%205618> >> Blog:harshcreationz.blogspot.com >> > > > > -- > > Dilshani Subasinghe > Software Engineer - QA *|* WSO2 > lean *|* enterprise *|* middleware > > Mobile : +94773375185 <+94%2077%20337%205185> > Blog : dilshani.me > > <https://wso2.com/signature> > -- Thanks & Regards, *Fazlan Nazeem* Senior Software Engineer WSO2 Inc Mobile : +94772338839 <%2B94%20%280%29%20773%20451194> [email protected]
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
