Hi All,
Tested the following flows and works as expected.
- Obtained access tokens using
- authorization code grant type
- authorization code grant type with PKCE
- password grant type
- refresh token grant type
- implicit grant type
- client-credential grant type
- Token revocation
- Revocation using access token
- Revocation using refresh token
- Access token introspection
- Refresh token introspection
DB: MySQL
[+] Stable - go ahead and release
Best Regards,
Janak
On Thu, Oct 3, 2019 at 10:19 AM Hasanthi Purnima Dissanayake <
[email protected]> wrote:
> Hi All,
>
> Tested following flows and working as expected.
>
> - Obtained access tokens using the following grant types.
>
> - authorization code grant type
> - password grant type
> - implicit grant type
> - client-credential grant type
>
> - Access token revocation
> - JWKS endpoint
>
> [+] Stable - go ahead and release
>
> Thanks,
> Hasanthi
>
> On Thu, Oct 3, 2019 at 9:44 AM Wijith Bandara <[email protected]> wrote:
>
>> Hi all
>>
>> Verified and validated below listed features are working as expected.
>>
>> QSG
>> - Single-Sign-On with SAML2
>> - Single-Sign-On with OIDC
>> - Multi-Factor Authentication
>> - Google as a Federated Authenticator
>> - Self-Signup
>> - Creating a workflow
>>
>> Multi Options Authentication with local authenticators (basic,
>> X509Certificate)
>> Multi Options Authentication with federated authenticators (SAML2 Web
>> SSO, Google, Yahoo)
>> Multi Options Authentication with federated authenticators (OAuth2/OpenID
>> Connect, Facebook, Twitter)
>> Multi-Factor Authentication with federated authenticators(SAML2 Web SSO,
>> Google, Yahoo, basic)
>>
>> No blocker issue found +1 to proceed
>>
>> Thanks,
>> wijith
>>
>> On Thu, Oct 3, 2019 at 9:16 AM Achini Jayasena <[email protected]> wrote:
>>
>>> Hi All,
>>>
>>> Tested and verified with performance test and long running test. Test
>>> result match with the expectations.
>>>
>>> *Performance test*
>>>
>>> Summary*: *Performance has been improved comparing to the product
>>> version 5.8
>>>
>>> Deployment
>>>
>>> - OS: Ubuntu
>>> - DB: Mysql
>>> - Heap: 4G/2G
>>> - CPU cores: 4
>>> - Concurrent users: 50, 100, 150, 300, 500
>>>
>>> Scenarios:
>>>
>>> - Authenticate_Super_Tenant_User
>>> - OAuth_AuthCode_Redirect_WithConsent
>>> - OAuth_Client_Credentials_Grant
>>> - OAuth_Implicit_Redirect_WithConsent
>>> - OAuth_Password_Grant
>>> - OIDC_AuthCode_Redirect_WithConsent
>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent
>>> - OIDC_Implicit_Redirect_WithConsent
>>> - OIDC_Password_Grant
>>> - SAML2_SSO_Redirect_Binding
>>> - Challenge questions by super tenant users
>>> - Refresh token refresh grant - Renewal false
>>>
>>> *Long running test*
>>>
>>> Summery*: *No issue reported.
>>>
>>> Deployment :
>>>
>>> - IS node
>>> - Instance type: c5.xlarge
>>> - vCPU:4
>>> - RAM: 8GB
>>> - Heap: 2G allocated for IS
>>>
>>>
>>> - RDS as the MySQL DB
>>> - Mysql engine version : 5.7.22
>>> - vCPU: 4
>>> - Instance class : db.m4.xlarge
>>> - RAM: 16 GB
>>> - Storage: 100 GiB
>>> - Executing test scenarios:
>>> - Authenticate_Super_Tenant_User
>>> - OAuth_AuthCode_Redirect_WithConsent
>>> - OAuth_Password_Grant
>>> - OIDC_AuthCode_Redirect_WithConsent
>>> - OIDC_Implicit_Redirect_WithConsent
>>> - OIDC_Password_Grant
>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent
>>> - SAML2_SSO_Redirect_Binding
>>> - Concurrency : 20
>>> - TPS: 240 per minute
>>>
>>> No blocking issue reported. +1 for proceed. :)
>>>
>>>
>>> *Thanks & Best Regards!*
>>>
>>> *Achini Jayasena*
>>> *Software Engineer - QA | WSO2*
>>>
>>> Email: [email protected]
>>> Mobile: +94 713 882 897
>>>
>>> [image: http://wso2.com/signature] <http://wso2.com/signature>
>>>
>>>
>>> On Wed, Oct 2, 2019 at 10:31 PM Mathuriga Thavarajah <[email protected]>
>>> wrote:
>>>
>>>> Hi All,
>>>>
>>>> Security Scanning reports (Static and Dynamic) were analyzed and
>>>> reviewed. Hence +1 from the Platform Security Team for proceeding with
>>>> the release.
>>>>
>>>> Thanks.
>>>>
>>>> Regards,
>>>> Mathuriga.
>>>>
>>>> On Wed, Oct 2, 2019 at 10:08 PM Niluka Sripali Monnankulama <
>>>> [email protected]> wrote:
>>>>
>>>>> Hi all,
>>>>>
>>>>>
>>>>> Verified and validated below listed features are working as expected.
>>>>>
>>>>>
>>>>> Test Environment OS- MAC O/S, Windows-Server-2016-standard-64bit
>>>>>
>>>>> Java version- 1.8.0_171, 11.0.4
>>>>>
>>>>> Database - H2, Oracle 12c
>>>>>
>>>>> User type, Primary, Secondary, Super user and Tenant user
>>>>>
>>>>>
>>>>>
>>>>> - User management with multilayer approval
>>>>> - Manage user stores(Create,update,delete,disable)
>>>>> - Configuring Claims for a Service Provider
>>>>> - Consent Management for Self Sign Up
>>>>> - Single Sign-On / Federated authentication for a web application
>>>>> with SAML - SP-Init, IDP-Init
>>>>> - SAML2 IdP Initiated Single Logout
>>>>>
>>>>> Front channel post binding
>>>>> Front channel redirect binding
>>>>> Backchannel
>>>>>
>>>>> - SAML SSO with end-user consent and claim mapping
>>>>> - Add a custom claim to OIDC
>>>>> - Adding Multiple Federated authenticators
>>>>> - By-parsing the IS authenticator selection page
>>>>> - Identity Analytics-SSO analyzed via WSO2 IS Analytics.
>>>>> - QSG- Self signup, workflow management
>>>>> - JIT provision
>>>>> - Ask Password
>>>>> - Add Email template
>>>>> - Connectors- GITHUB, LinkedIn, Google
>>>>> - Installing as a Windows Service (Java version- 1.8.0_171)
>>>>> - REST APIs for the user portal
>>>>>
>>>>> Account Recovery - Update challenge questions answers
>>>>>
>>>>> Authorized OAuth Apps - List and revoke
>>>>>
>>>>> User session management
>>>>>
>>>>> Pending Approvals
>>>>>
>>>>>
>>>>> +1 to proceed.
>>>>>
>>>>> On Wed, Oct 2, 2019 at 4:26 PM Buddhima Udaranga <[email protected]>
>>>>> wrote:
>>>>>
>>>>>> Hi,
>>>>>>
>>>>>> We have tested the Configuration Management REST API with the WSO2 IS
>>>>>> 5.9.0-RC2 with the MySQL database. No blocker issues found. +1 to
>>>>>> proceed.
>>>>>>
>>>>>> Thanks,
>>>>>> *Buddhima Udaranga*|Software Engineer| WSO2 Inc. <http://wso2.com/>
>>>>>> (M)+94 714742094 | (E) [email protected]
>>>>>> <https://wso2.com/signature>
>>>>>>
>>>>>>
>>>>>> On Wed, Oct 2, 2019 at 10:59 AM Piraveena Paralogarajah <
>>>>>> [email protected]> wrote:
>>>>>>
>>>>>>> Hi all,
>>>>>>>
>>>>>>>
>>>>>>> We are pleased to announce the second release candidate of WSO2
>>>>>>> Identity Server 5.9.0.
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> New Features
>>>>>>>
>>>>>>> -
>>>>>>>
>>>>>>> An improved, simpler configuration model
>>>>>>> -
>>>>>>>
>>>>>>> RESTful APIs for user self-services
>>>>>>> -
>>>>>>>
>>>>>>> Passwordless authentication with WebAuthn
>>>>>>> -
>>>>>>>
>>>>>>> Reusable script library for adaptive authentication
>>>>>>> -
>>>>>>>
>>>>>>> Cross-protocol single logout capability
>>>>>>> -
>>>>>>>
>>>>>>> Inbuilt support to view and revoke user sessions
>>>>>>> -
>>>>>>>
>>>>>>> Azure AD/Office365 multi-domain federation support
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> Fixes
>>>>>>>
>>>>>>> This release includes the following issue fixes and improvements:
>>>>>>>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m1
>>>>>>> <https://github.com/wso2/product-is/milestone/85?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m2
>>>>>>> <https://github.com/wso2/product-is/milestone/86?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m3
>>>>>>> <https://github.com/wso2/product-is/milestone/87?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m4
>>>>>>> <https://github.com/wso2/product-is/milestone/88?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m5
>>>>>>> <https://github.com/wso2/product-is/milestone/90?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m6
>>>>>>> <https://github.com/wso2/product-is/milestone/91?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-alpha
>>>>>>> <https://github.com/wso2/product-is/milestone/89?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-beta
>>>>>>> <https://github.com/wso2/product-is/milestone/93?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-GA
>>>>>>> <https://github.com/wso2/product-is/milestone/83?closed=1>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> Source and Distribution
>>>>>>>
>>>>>>> The source and distribution
>>>>>>> <https://github.com/wso2/product-is/releases/download/v5.9.0-rc2/wso2is-5.9.0-rc2.zip>
>>>>>>> are available at
>>>>>>> https://github.com/wso2/product-is/releases/tag/v5.9.0-rc2
>>>>>>>
>>>>>>>
>>>>>>> Please download the product, test it, and vote using the following
>>>>>>> convention.
>>>>>>>
>>>>>>> [+] Stable - go ahead and release
>>>>>>>
>>>>>>> [-] Broken - do not release (explain why)
>>>>>>>
>>>>>>> Thanks,
>>>>>>>
>>>>>>> WSO2 Identity and Access Management Team
>>>>>>>
>>>>>>> *Piraveena Paralogarajah*
>>>>>>> Software Engineer | WSO2 Inc.
>>>>>>> *(m)* +94776099594 | *(e)* [email protected]
>>>>>>>
>>>>>>> _______________________________________________
>>>>>> Dev mailing list
>>>>>> [email protected]
>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Niluka Sripali Monnankulama
>>>>> Software Engineer - WSO2 Sri Lanka
>>>>>
>>>>> Mobile : +94 76 76 52843
>>>>>
>>>>> _______________________________________________
>>>>> Dev mailing list
>>>>> [email protected]
>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>>
>>>>
>>>>
>>>> --
>>>>
>>>> *Mathuriga Thavarajah*
>>>> Software Engineer
>>>> WSO2 Inc. - http ://wso2.com
>>>>
>>>> Email : [email protected]
>>>> Mobile : +94778191300
>>>>
>>>>
>>>>
>>>> *[image: http://wso2.com/signature] <http://wso2.com/signature>*
>>>> _______________________________________________
>>>> Dev mailing list
>>>> [email protected]
>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>
>>>
>>
>> --
>> Wijith Bandara
>> Software Engineer | WSO2
>>
>> Email : [email protected]
>> Mobile : +94718970370
>> Web : http://wso2.com
>>
>> <http://wso2.com/signature>
>> _______________________________________________
>> Dev mailing list
>> [email protected]
>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>
>
>
> --
>
> Hasanthi Dissanayake | Associate Technical Lead | WSO2 Inc.
> (m) +94718407133 | (w) +94112145345 | Email: [email protected] | Blog:
> https://medium.com/@hasanthipurnimadissanayake
>
> _______________________________________________
> Dev mailing list
> [email protected]
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
--
*Janak Amarasena* | Software Engineer | WSO2 Inc.
(m) +94777764144 | (w) +94112145345 | (e) [email protected]
<https://wso2.com/signature>
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
