Re: [Architecture] IS550: Oauth Role or XACML scope validation

2018-05-04 Thread Farasath Ahamed
On Friday, May 4, 2018, Vadim Kimlaychuk wrote: > Dear architects, > > I am trying to implement validation for OAuth tokens described here > : https://docs.wso2.com/display/IS560/Validating+the+Scope+of+ > OAuth+Access+Tokens+using+XACML+Policies. Since this

[Architecture] IS550: Oauth Role or XACML scope validation

2018-05-04 Thread Vadim Kimlaychuk
Dear architects,   I am trying to implement validation for OAuth tokens described here : https://docs.wso2.com/display/IS560/Validating+the+Scope+of+OAuth+Access+Tokens+using+XACML+Policies. Since this example failed for me I have tried to do similar with role validation described here:

Re: [Architecture] [APIM][API-Manager gateway] Attaching Labels for APIs

2018-05-04 Thread Nuwan Dias
I think it should be in the rxt as a field. Storing it as a property seems like a hack to me. And yes, storing on a separate DB will cause complications with queries since the rest of the data is in the rxt. On Fri, May 4, 2018 at 5:45 PM, Malintha Amarasinghe wrote: > Hi, >

Re: [Architecture] [APIM][API-Manager gateway] Attaching Labels for APIs

2018-05-04 Thread Malintha Amarasinghe
Hi, On Fri, May 4, 2018 at 11:15 AM, Prasanna Dangalla wrote: > > HI, > > > > On Fri, May 4, 2018 at 11:07 AM Chamin Dias wrote: > >> On Fri, May 4, 2018 at 9:19 AM, Dinusha Dissanayake >> wrote: >> >>> AFAIU we are going to

[Architecture] WSO2 API Manager 2.2.0-update4 Released!

2018-05-04 Thread Harsha Kumara
The WSO2 API Manager team is pleased to announce the release of version 2.2.0-update4 of API Manager. WSO2 API Manager is a platform for creating, managing, consuming and monitoring APIs. It employs proven SOA best practices to solve a wide range of API management challenges such as API

Re: [Architecture] WSO2 IS/APIM : support Mutual TLS Profile for OAuth 2.0 ?

2018-05-04 Thread Sathya Bandara
Hi Youcef, Currently this feature supports client authentication using self-signed certificates. You can refer the official documentation at [1]. [1] https://docs.wso2.com/pages/viewpage.action?spaceKey=IS550=Mutual+TLS+for+OAuth+Clients Thanks, Sathya On Fri, May 4, 2018 at 1:50 PM, Youcef

Re: [Architecture] [APIM] Label feature for API-Manager gateway

2018-05-04 Thread Krishan Wijesena
Hi chamin, On Thu, May 3, 2018 at 10:27 PM, Chamin Dias wrote: > Hi Krishan, > > On Thu, May 3, 2018 at 3:29 PM, Nuwan Dias wrote: > >> >> >> On Thu, May 3, 2018 at 2:43 PM, Pubudu Gunatilaka >> wrote: >> >>> Hi Nuwan, >>> >>> On Thu, May

Re: [Architecture] WSO2 IS/APIM : support Mutual TLS Profile for OAuth 2.0 ?

2018-05-04 Thread Youcef HILEM
Hi, Good news : I just found that it's implemented : [1] https://github.com/wso2/product-is/issues/2751 [2] http://wso2-oxygen-tank.10903.n7.nabble.com/IS-5-5-0-TLS-Mutual-Authentication-for-OAuth-2-0-clients-td155448.html [3]