Hi All,

I have tested the following scenarios with the H2 default database.

   - Configuring a service provider for OAuth/OpenID Connect and
   authenticating with the playground2 app.
   - Configuring a service provider for SAML SSO.
   - Add user, roles, and update permissions.

*[+] Stable - Go ahead and release*

Regards,
Ashen


On Thu, Sep 13, 2018 at 11:31 PM, Tharindu Edirisinghe <[email protected]>
wrote:

> Evaluated the static code analysis and dynamic security analysis reports.
>
> All the flagged issues are found to be false positives.
>
> [+] Stable in terms of security - Go ahead and release
>
> Thanks,
> Tharindu Edirisinghe
>
> On Thu, Sep 13, 2018 at 10:48 PM Pamoda Wimalasiri <[email protected]>
> wrote:
>
>> Hi all,
>>
>> I tested below scenarios with DB2 database.
>>
>>    - Self-registration and account confirmation
>>    - Self-registration consent purposes
>>    - Just-In-Time Provisioning Consent Purposes
>>    - SAML2 Artifact binding and authenticate
>>
>> No blocking issues found.
>>
>> [+] Stable - Go ahead and release
>>
>> Thanks,
>> Pamoda
>>
>> On Thu, Sep 13, 2018 at 10:39 PM Vihanga Liyanage <[email protected]>
>> wrote:
>>
>>> Hi all,
>>>
>>> Tested below scenarios on IS 5.7.0-RC2 pack using the default H2
>>> database and Postgres SQL database.
>>>
>>>    - Started with *-Dsetup* property in Postgres and DB scripts
>>>    executed without any issues.
>>>    - Add service provider, configured SAML SSO, authenticate with *the
>>>    dispatch *sample web app.
>>>    - Enable SAML2 Artifact binding and authenticate.
>>>    - Add SP certificate, enable signature validation in SAML2 artifact
>>>    resolve request and authenticate.
>>>    - Add new SP with Open ID OAuth/OpenID Connect Configuration and
>>>    authenticate with *the playground *sample web app. Tested all OAuth
>>>    grand types.
>>>    - Add SP certificate, enable ID token encryption, authenticate and
>>>    decrypt the encrypted ID token by providing the private key of the SP.
>>>
>>> No blocking issues found.
>>>
>>> [+] Stable - Go ahead and release
>>>
>>> Best regards,
>>> Vihanga.
>>>
>>> On Thu, Sep 13, 2018 at 10:14 PM Janak Amarasena <[email protected]> wrote:
>>>
>>>> Hi all,
>>>>
>>>> Tested below scenarios with MySQL 5.7,
>>>>
>>>>    - Self-Registration and Account Confirmation.
>>>>    - Configure Just-In-Time Provisioning Consent Purposes.
>>>>    - Add user, add roles, add permissions
>>>>    - UMA 2.0 flow
>>>>    - Obtain access token using password grant.
>>>>    - Create, delete, update, list resources and read resource
>>>>    description of a resource by invoking UMA resource registration 
>>>> endpoint.
>>>>    - Entitlement policy creation using write policy in xml and
>>>>    publishing.
>>>>    - Obtain permission ticket by invoking UMA permission endpoint.
>>>>    - Configure a service provider with OpenID Connect and obtain
>>>>    access token using UMA grant.
>>>>    - Invoke the OAuth Introspection Endpoint.
>>>>    - Enable SAML2 Artifact binding and authenticate
>>>>
>>>> No blocking issues found.
>>>>
>>>> [+] Stable - Go ahead and release
>>>>
>>>> Best Regards,
>>>> Janak
>>>>
>>>>
>>>> On Thu, Sep 13, 2018 at 10:10 PM, Tharindu Bandara <[email protected]>
>>>> wrote:
>>>>
>>>>> Hi all,
>>>>>
>>>>> I have tested the following scenarios on IS 5.7.0 RC3 pack using
>>>>> MySQL 5.7 database and did not encounter any issues.
>>>>>
>>>>>    - Configuring a service provider for adaptive authentication.
>>>>>    - Configuring Role-Based Adaptive Authentication.
>>>>>    - Configuring User-Age-Based Adaptive Authentication.
>>>>>    - Configuring IP-Based Adaptive Authentication.
>>>>>    - Configuring New-Device-Based Adaptive Authentication.
>>>>>    - Using WSO2 Stream Processor for Adaptive Authentication.
>>>>>    - Configuring Risk-Based Adaptive Authentication.
>>>>>    - Configuring login-based adaptive authentication.
>>>>>
>>>>> [+] Stable - Go ahead and release.
>>>>>
>>>>> On Thu, Sep 13, 2018 at 10:05 PM Winma Heenatigala <[email protected]>
>>>>> wrote:
>>>>>
>>>>>> Hi,
>>>>>> I have tested the following with Oracle and no issues were found.
>>>>>>
>>>>>>    - Configuring Just-In-Time Provisioning Consent Purposes
>>>>>>    - Self-Registration and Account Confirmation
>>>>>>    - Configuring SAML 2.0 Artifact Binding
>>>>>>    - Add user, add roles, add permissions
>>>>>>
>>>>>> [+] Stable - Go ahead and release
>>>>>>
>>>>>> Thanks,
>>>>>> Winma
>>>>>>
>>>>>>
>>>>>> On Thu, Sep 13, 2018 at 9:03 PM, Minoli Perera <[email protected]>
>>>>>> wrote:
>>>>>>
>>>>>>> Hi,
>>>>>>>
>>>>>>> Tested below scenarios on IS 5.7.0-RC3 pack with Oracle database
>>>>>>> setup,
>>>>>>>
>>>>>>>    - Self-Registration and Account Confirmation.
>>>>>>>    - Configure Just-In-Time Provisioning Consent Purposes.
>>>>>>>    - Add user, add roles, add permissions.
>>>>>>>
>>>>>>> No blocking issues found.
>>>>>>>
>>>>>>> [+] Stable - Go ahead and release
>>>>>>>
>>>>>>> Thanks,
>>>>>>>
>>>>>>> On Thu, Sep 13, 2018 at 8:55 PM Chamath Samarawickrama <
>>>>>>> [email protected]> wrote:
>>>>>>>
>>>>>>>> Hi,
>>>>>>>>
>>>>>>>> I tested the following on* IS 5.7.0-RC3* using a *DB2* database
>>>>>>>> setup.
>>>>>>>>
>>>>>>>> Configuring a Service Provider for Adaptive Authentication.
>>>>>>>> Adaptive Authentication with,
>>>>>>>>
>>>>>>>>    -     Role-Based template
>>>>>>>>    -     User-Age-Based template
>>>>>>>>    -     Tenant-Based template
>>>>>>>>    -     User Store-Based template
>>>>>>>>    -     IP-Based template
>>>>>>>>    -     New-Device-Based template
>>>>>>>>    -     ACR-Based template
>>>>>>>>    -     Login-Based template
>>>>>>>>
>>>>>>>> Configuring user input prompt templates in Adaptive Authentication.
>>>>>>>> Using WSO2 Stream Processor for Adaptive Authentication
>>>>>>>>
>>>>>>>>    -     Tested with Risk-Based template
>>>>>>>>
>>>>>>>> No blocking issues were found.
>>>>>>>>
>>>>>>>> *[+] Stable - Go ahead and release.*
>>>>>>>>
>>>>>>>> On Thu, Sep 13, 2018, 19:09 Senthalan Kanagalingam <
>>>>>>>> [email protected]> wrote:
>>>>>>>>
>>>>>>>>> Hi all,
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> We are pleased to announce the third release candidate of WSO2
>>>>>>>>> Identity Server 5.7.0.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> This release fixes the following issues,
>>>>>>>>>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-RC2 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/58?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-RC1 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/52?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-Beta2 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/57?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-Beta fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/54?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-Alpha3 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/53?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-Alpha2 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/51?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-Alpha fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/50?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-M5 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/49?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-M4 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/48?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-M3 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/47?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-M2 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/46?closed=1>
>>>>>>>>>    -
>>>>>>>>>
>>>>>>>>>    5.7.0-M1 fixes
>>>>>>>>>    <https://github.com/wso2/product-is/milestone/45?closed=1>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Source and distribution,
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>    Runtime - https://github.com/wso2/
>>>>>>>>> product-is/releases/v5.7.0-rc3
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Please download, test the product and vote.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>    [+] Stable - go ahead and release
>>>>>>>>>
>>>>>>>>>    [-] Broken - do not release (explain why)
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Thanks,
>>>>>>>>>
>>>>>>>>> - WSO2 Identity and Access Management Team -
>>>>>>>>> --
>>>>>>>>>
>>>>>>>>> *Senthalan Kanagalingam*
>>>>>>>>> *Software Engineer - WSO2 Inc.*
>>>>>>>>> *Mobile : +94 (0) 77 18 77 466*
>>>>>>>>> <http://wso2.com/signature>
>>>>>>>>>
>>>>>>>> _______________________________________________
>>>>>>>> Dev mailing list
>>>>>>>> [email protected]
>>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Minoli Perera,
>>>>>>> Software Engineer, WSO2, Inc.
>>>>>>> E-mail : [email protected]
>>>>>>> Mobile : +94771567527
>>>>>>> <http://wso2.com/signature>
>>>>>>>
>>>>>>> _______________________________________________
>>>>>>> Dev mailing list
>>>>>>> [email protected]
>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>>
>>>>>> *Winma Heenatigala*
>>>>>> *Trainee Software Engineer | WSO2*
>>>>>>
>>>>>> *Mobile     : +94719132444*
>>>>>>
>>>>>>
>>>>>>
>>>>>> _______________________________________________
>>>>>> Architecture mailing list
>>>>>> [email protected]
>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> *Tharindu Bandara*
>>>>> Software Engineer | WSO2
>>>>>
>>>>> Email : [email protected]
>>>>> Mobile : +94 714221776
>>>>> web : http://wso2.com
>>>>> <https://www.google.com/url?q=http://wso2.com&sa=D&ust=1517653383990000&usg=AFQjCNFggB4bSJTKmdqKcBV0VY9xx1ABKg>
>>>>>
>>>>> https://wso2.com/signature
>>>>>
>>>>> _______________________________________________
>>>>> Dev mailing list
>>>>> [email protected]
>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> *Janak Amarasena*
>>>>
>>>> Software Engineer
>>>>
>>>> Email: [email protected]
>>>>
>>>> Mobile: +94777764144
>>>>
>>>> Web: https://wso2.com
>>>>
>>>>
>>>> <http://wso2.com/signature>
>>>> _______________________________________________
>>>> Dev mailing list
>>>> [email protected]
>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>
>>>
>>>
>>> --
>>>
>>> Vihanga Liyanage
>>>
>>> Software Engineer | WS*O₂* Inc.
>>>
>>> M : +*94710124103* | http://wso2.com
>>>
>>> [image: http://wso2.com/signature] <http://wso2.com/signature>
>>> _______________________________________________
>>> Architecture mailing list
>>> [email protected]
>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>>>
>>
>>
>> --
>>
>> *Pamoda Wimalasiri*
>> Software Engineer - WSO2
>>
>> Email : [email protected]
>> Mobile : +94713705814 <+94%2077%20936%207571>
>> Web : https://wso2.com/
>>
>> _______________________________________________
>> Dev mailing list
>> [email protected]
>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>
>
>
> --
>
> Tharindu Edirisinghe
> Associate Technical Lead | WSO2 Inc
> Platform Security Team
> Blog : http://tharindue.blogspot.com
> mobile : +94 775181586
>
> _______________________________________________
> Architecture mailing list
> [email protected]
> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>
>


-- 
*Ashen De Silva*
Intern - Software Engineering

WSO2, Inc.
Mob: +94 71 349 8442
Web: http://wso2.com

<https://us18.wso2con.com/?utm_source=emailsignature&utm_medium=email&utm_campaign=emailsignatureclick_events>
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev

Reply via email to