+ architecture ---------- Forwarded message --------- From: Hasunie Adikari <hasu...@wso2.com> Date: Tue, Jul 30, 2019 at 3:16 PM Subject: Re: Updated invitation: [Design-review] Basic authentication support in API Micr... @ Tue Jul 30, 2019 1pm - 2pm (IST) (APIM Team) To: APIM Team <apim-gr...@wso2.com> Cc: Nuwan Dias <nuw...@wso2.com>, Rajith Roshan <raji...@wso2.com>, Chamod Samarajeewa <cha...@wso2.com>, Praminda Jayawardana <prami...@wso2.com>, Viraj Gamage <vir...@wso2.com>, Dushan Silva <dush...@wso2.com>, Pubudu Gunatilaka <pubu...@wso2.com>
Please find the meeting notes. 1. Besides the config based authentication, we are about to support the LDAP/AD user store based authentication. Hence separate the approaches through the micro-gw.conf as shown below. [basicAuthenticationConfig] userStoretype = "config" #userStoretype = "ldap" 2. Discussed a way we support third-party identity providers. It is a competitive feature, hence prioritized it and planned to engage a handler to cater to the requirement. 3. New config entry should be introduced to differentiate the WSO2 KM and an external introspect endpoint as shown below. [keyManager] type="wso2" #type="other" Regards, Hasunie On Tue, Jul 30, 2019 at 10:54 AM Hasunie Adikari <hasu...@wso2.com> wrote: > *This event has been changed.* > more details » > <https://www.google.com/calendar/event?action=VIEW&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0> > [Design-review] Basic authentication support in API Microgateway > > *When* > *Changed: *Tue Jul 30, 2019 1pm – 2pm India Standard Time - Colombo > *Where* > *Changed: *LK 6th Floor Meeting Room - Dijkstra Ext:1005650 (map > <https://www.google.com/maps/search/LK+6th+Floor+Meeting+Room+-+Dijkstra+Ext:1005650?hl=en> > ) > *Calendar* > APIM Team > *Who* > • > Hasunie Adikari - organizer > • > Nuwan Dias > • > Rajith Roshan > • > Viraj Gamage > • > Chamod Samarajeewa > • > prami...@wso2.com > • > APIM Team > • > Pubudu Gunatilaka > • > Dushan Silva > I have been working on basic authentication support in WSO2 API > microgateway. We already have implemented the config based authentication > approach. The user should be benefited the basic authentication against the > user store configured in the key manager. > > > Points to be discussed : > > 1.) When we inject the LDAP user store with ballerina handlers, eventually > the micro-gw directly contacts the LDAP and authenticate the request. > Need to make sure the approach because most of the time, gateway won't > share user stores. > > 2.) What would be the scenario like someone use an external identity > provider to authenticate the requests? > > Going (apim-gr...@wso2.com)? *Yes > <https://www.google.com/calendar/event?action=RESPOND&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&rst=1&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0> > - Maybe > <https://www.google.com/calendar/event?action=RESPOND&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&rst=3&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0> > - No > <https://www.google.com/calendar/event?action=RESPOND&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&rst=2&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0>* > more options » > <https://www.google.com/calendar/event?action=VIEW&eid=MThncGc0NHE0Y2h1azJrcHY1bzB2cTNuN3IgYXBpbS1ncm91cEB3c28yLmNvbQ&tok=MTYjaGFzdW5pZUB3c28yLmNvbWNjNGI4YTNkMTY1YTJkYTY2ZGE4MWZhZjkwNDA3MWI4Y2NhN2RhZmI&ctz=Asia%2FColombo&hl=en&es=0> > > Invitation from Google Calendar <https://www.google.com/calendar/> > > You are receiving this courtesy email at the account apim-gr...@wso2.com > because you are an attendee of this event. > > To stop receiving future updates for this event, decline this event. > Alternatively you can sign up for a Google account at > https://www.google.com/calendar/ and control your notification settings > for your entire calendar. > > Forwarding this invitation could allow any recipient to send a response to > the organizer and be added to the guest list, or invite others regardless > of their own invitation status, or to modify your RSVP. Learn More > <https://support.google.com/calendar/answer/37135#forwarding>. > -- *Hasunie Adikari* Associate Technical Lead WSO2 Inc.; http://wso2.com lean.enterprise.middleware blog http://hasuniea.blogspot.com | https://medium.com/@Hasunie/ Mobile:+94713095876 -- *Hasunie Adikari* Associate Technical Lead WSO2 Inc.; http://wso2.com lean.enterprise.middleware blog http://hasuniea.blogspot.com | https://medium.com/@Hasunie/ Mobile:+94713095876
_______________________________________________ Architecture mailing list Architecture@wso2.org https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture