Re: [Dev] Improvement for REST authentication valve to obtain UMA Protection Scope

+1. We can do this at OAuth2AccessTokenHandler without any cost since scopes are anyway returned as a result of oauth2 token validation. Hence doing this validation again in application level to just to retrieve scopes is a cost. Please make sure to use an oauth specific name for this parameter

[Dev] Improvement for REST authentication valve to obtain UMA Protection Scope

Hi All, I'm currently working on implementing protection API endpoints for UMA 2.0 . To access the protection API endpoints it is a must to have a valid PAT (Protection API Access Token) in the request. PAT represents the authorization of the resource owner for the resource server to use the

Re: [Dev] Changing the log pattern in http access logs in APIM-Gateway

Hi all, It seems like the hardcoded pattern is obtained from [1] and processed later by different threads at the gateway. Therefore changing it to get the duration of the request processing time might not be the optimal solution. [1] - https://github.com/wso2/wso2-synapse/blob/master/modules/

Re: [Dev] [APIM] axi2MessageContext variable returns null in keymgt component of APIM

Hi Viduranga, Thank you for the suggestion. Yes It works fine with WS client. But still axis2MessageContext returns null for thrift client so I am unable to use the existing log from [2]. So now for my purpose, I have added a separate debug log to log the response time. *Dushani Wellappili*

Re: [Dev] [APIM] axi2MessageContext variable returns null in keymgt component of APIM

Hi Dushani, Try changing the ThriftClient to WSClient in the *api-manager.xml* of the *KeyManager* node. Thanks, Viduranga. On Tue, Feb 20, 2018 at 3:10 PM, Dushani Wellappili wrote: > Hi all, > > I am using APIM 2.1.0 in a distributed deployment. I have enabled debug >

Re: [Dev] Unable to execute WSO2 EI 6.1.1 installer in Ubuntu 17.10

I agree. We are planning to add supported operating systems on the download page. Thank you and regards, Miraj On Wed, Feb 21, 2018 at 3:32 AM, Niranjan Karunanandham < niranjan.k...@gmail.com> wrote: > Noted. Thanks Miraj. It will be great to put the note or something on the > site until this

Re: [Dev] [Architecture] [IS 5.5.0] TLS Mutual Authentication for OAuth 2.0 clients

Hi all, I'm currently working on integrating the changes in [1] to provide the capability to upload client certificates to truststore during run time without restart. As per the implementation in [1] the default trust manager will be replaced with a custom trust manager which will reload the

Re: [Dev] Changing the log pattern in http access logs in APIM-Gateway

Hi Praminda, The problem is that the above is not working when it is applied to the Gateway. For others, it works. It seems like the pattern is hardcoded in the Gateway somehow. I'm looking for a way to update it, to perhaps find out whether it is hardcoded and if yes, where and likewise.

Re: [Dev] Changing the log pattern in http access logs in APIM-Gateway

> > The pattern worked for all the nodes except for Gateway in which the > default logging pattern was not affected by the pattern change. Is there a > way to change the log pattern for Gateway to add the timestamp and duration? > Are you referring the access logs for API requests coming into

Re: [Dev] Unable to execute WSO2 EI 6.1.1 installer in Ubuntu 17.10

Noted. Thanks Miraj. It will be great to put the note or something on the site until this is fixed cause people using Ubuntu 17.04+ will need to search this. Regards, Nira On Mon, Feb 19, 2018 at 5:15 PM, Miraj Abeysekara wrote: > Hi Niranjan, > > Missing libpng shared library

Re: [Dev] SSLPeerUnverifiedException for the Publisher Login with apim2.1.0-update11

Hi Harsha, Thanks, It works by importing the KM cert to APIM. This information should goes to docs and raised[1] to track this. [1] https://github.com/wso2/product-apim/issues/2781 Thanks, Chaminda On Tue, Feb 20, 2018 at 5:50 PM, Harsha Kumara wrote: > Hi Chaminda, > > If

[Dev] Design Review : User Preferences in Carbon Dashboard Widgets

Hi All, I am implementing a feature for Widget Configuration Panel of Carbon Dashboard's designer view, to allow users(dashboard designers) to configure the properties of the widgets such as the widget background color, widget title etc. The Current situation is that he user(dashboard designer)

Re: [Dev] Query Regarding the JIRA BUG- IDEBTITY-4250

Hi Monika, And also make sure that you have done the claim configuration properly. It could be found under the given service provider configuration. Thanks On Tue, Feb 20, 2018 at 10:35 AM, Sathya Bandara wrote: > Hi Monika, > > Have you added the required user attributes

Re: [Dev] SSLPeerUnverifiedException for the Publisher Login with apim2.1.0-update11

Hi Chaminda, If you pointed AuthManager to Key Manager, you will need to import the certs. Please double check whether certs are properly imported to client-trustore. Thanks, Harsha On Tue, Feb 20, 2018 at 4:17 PM, Chaminda Jayawardena wrote: > Hi, > > Getting below

[Dev] SSLPeerUnverifiedException for the Publisher Login with apim2.1.0-update11

Hi, Getting below exception[2] while trying to login to the Publisher app. I am using *wso2am-2.1.0-update1*1 with *wso2is-km-5.3.0-wum* Tried with [1] for passthrough transport sender in axis2.xml but couldn't resolve. What would be the cause for this please? [1] AllowAll [2] 2018-02-20

[Dev] [APIM] axi2MessageContext variable returns null in keymgt component of APIM

Hi all, I am using APIM 2.1.0 in a distributed deployment. I have enabled debug logs for APIKeyValidationService class inside org.wso2.carbon.apimgt.keymgt.service. I need to log the response time taken for OAuth token response from keyManager to gateway from line 259 [1]. But logMessages()

Re: [Dev] Support for encrypted ID tokens in OIDC

Hi all, [Update] I was able to complete the initial development of the proposed project, encrypted id token support in OIDC flow. Following are the links related to the development. - An issue was created in product-is repository to track the development. -

[Dev] Changing the log pattern in http access logs in APIM-Gateway

Hi all, I was trying to update the log pattern in http access logs in a distributed APIM by modifying the catalina-server.xml as follows. Change pattern in the following: To: In the above pattern, %{format}t represents the timestamp with milliseconds and %T represents the time it took to