HI Kishanthan,
This is indeed a very helpful to have, one advantage I would see is we can
let the tenants to have deployed their own Authenticators,
UserStoreManagers and various other extensions without interfering the
system. But how would be expose a Core service such as RealmService
or
Hi Manjula,
Let me answer inline,
On Mon, Mar 10, 2014 at 4:54 PM, Manjula Rathnayake manju...@wso2.comwrote:
Hi all,
How do we store client secret and access tokens in mobile application?
Have we encrypted the client secret?
We can let the mobile app developer to implement his own
Hi Venura,
I'm confused, are we going to throttle based on User or Client or both ? I
assume a client is a web browser.
Thanks,
-Suresh
On Mon, Feb 10, 2014 at 6:58 PM, Venura Kahawala ven...@wso2.com wrote:
Hi,
As you may be already aware 'App manager' is capable of providing a
gateway
, 2014 at 9:56 PM, Suresh Attanayaka sur...@wso2.comwrote:
Hi Venura,
I'm confused, are we going to throttle based on User or Client or both ?
I assume a client is a web browser.
Thanks,
-Suresh
On Mon, Feb 10, 2014 at 6:58 PM, Venura Kahawala ven...@wso2.comwrote:
Hi,
As you may
Hi,
As a user I would like to continue app creation even when some steps are
failed such as Issue repository creation, And then I can try those steps
later to complete the app creation.
On Mon, Jan 6, 2014 at 12:10 PM, Shamika Ariyawansa sham...@wso2.comwrote:
Hi,
Is there any possibility
of API Manager this JWT can be extracted and sent to the back
end services as usual.
WDYT?
On Fri, Oct 4, 2013 at 9:33 PM, Suresh Attanayaka sur...@wso2.com wrote:
Hi Johann,
+1 on the idea. Are we extending the existing SOAP API
(OAuth2TokenValidationService) for this or writing a new SOAP
the token. It only returns back
some metadata about the token. Introspection end point ideally should not
return any authorization decisions back - as that is not the concern
addressed by it.
Thanks regards,
-Prabath
On Fri, Oct 4, 2013 at 9:33 PM, Suresh Attanayaka sur...@wso2.com wrote:
Hi
Hi Johann,
+1 on the idea. Are we extending the existing SOAP API
(OAuth2TokenValidationService) for this or writing a new SOAP API ? My idea
is that we should deprecate the existing API (but not remove) and write a
whole new API just for the sake of backward capability.
And how about a REST
Hi All,
I think it's quite acceptable if the users of the newly added userstore are
not being able to login within a timeframe (like 5 min in production) . So
what if we send the LoadTenant Cluster messages to the worker nodes after a
new userstore is being added, after the worker nodes have
Hi Prabath,
I have few concerns on this.
Who can ask OTPs from MDM ? Exactly what MDM identifies in this step, is it
the user, device or both ?
What the OTP going to look like, I believe OTP generation should use a
crypto function based on [timestamp+deviceid+userid]. And we should have a
mean
10 matches
Mail list logo