Re: [Dev] [DEV][API-M] Localization at tenant level

I just learned that this doen't necessarily should be a tenant level thing. We can define the locale strings and anyone who uses the locale will see the string we have defined. On Mon, May 8, 2017 at 6:59 PM, Amila Maha Arachchi wrote: > This doesn't look like a tenant level

Re: [Dev] [GSOC][CEP][DEV] Python API for Siddhi CEP

+1 for the approach. We will add the classes On Tue, May 9, 2017 at 12:05 AM Madhawa Vidanapathirana < madhawavidanapathir...@gmail.com> wrote: > Hi, > > I will look into REST side also then. Already found good APIs to work with > Native Calls and SOAP. > > I am also trying to come up with a

Re: [Dev] IS 5.2.0 DB2 migration scripts

Hi Abimaran, Usually if we start the pack with -Dsetup option product database scripts are run through [1] to create databases which specifically checks for "/" to identify a single query for DB2. So product database scripts has "/" as the statement terminator. Anyway this terminator will not be

Re: [Dev] [IS] Authorization granted for a SP for a different tenant's user when SaaS is disabled

On Tuesday, May 9, 2017, Isura Karunaratne wrote: > Hi Fara, > > I think we can use following way to fix the problem. > > >- Check an OAuth application is registered for SP in >doPreUpdateApplication method, if not, return and skip following steps. >- Get the value of

Re: [Dev] IS 5.2.0 DB2 migration scripts

Hi Ishara, Any reason for having / as the statement terminator in DB2 script? The default DB2 statement terminator is ; API Manager had the same issue and we fixed it. [1] : https://www.ibm.com/support/knowledgecenter/SS62YD_2.2.1/com.ibm.datatools.sqlxeditor.doc/topics/tchngstmtterm.html [2] :

Re: [Dev] [IS] Authorization granted for a SP for a different tenant's user when SaaS is disabled

Hi Hasanthi, On Tue, May 9, 2017 at 8:41 AM, Hasanthi Purnima Dissanayake < hasan...@wso2.com> wrote: > Hi Sathya, > > Does the spec [1] contains any detail about access token revocation? > > According to the Oauth 2 spec, revocation of a refresh token should also > invalidate all access tokens

[Dev] Improvements to OAuth Dynamic Client Registration

Hi Abilashini, As discussed can you start working on [1] and [2] to improve the existing DCR functionality. If you need any clarification or help, please get back to us. [1] https://wso2.org/jira/browse/IDENTITY-5529 [2] https://wso2.org/jira/browse/IDENTITY-5185 Thanks, -- Maduranga

Re: [Dev] [IS] Authorization granted for a SP for a different tenant's user when SaaS is disabled

Hi Fara, I think we can use following way to fix the problem. - Check an OAuth application is registered for SP in doPreUpdateApplication method, if not, return and skip following steps. - Get the value of SaaS property in ApplicationMgtListener.doPreUpdateApplication() - *value1*

Re: [Dev] [IS] Authorization granted for a SP for a different tenant's user when SaaS is disabled

Hi Sathya, Does the spec [1] contains any detail about access token revocation? It is evident that we should revoke the refresh token such that user is not > permitted to obtain further access tokens for the application. yes it is obvious that we should not allow to generate access tokens

Re: [Dev] Client credential grant type for ID token generation

Hi All, As discussed there is no use case of issuing an id token with the pay load of application owners details. Further there is no usage of providing user claims from the user info endpoint. So we have fixed this issue for IS 5.4.0. Please find the PR as below. By removing this functionality

Re: [Dev] [GSOC][CEP][DEV] Python API for Siddhi CEP

Hi, I will look into REST side also then. Already found good APIs to work with Native Calls and SOAP. I am also trying to come up with a list of classes of Siddhi Java Library that should be exposed via Python API. I don't think its required to wrap the internal classes since their

[Dev] WSO2 IoT Server 3.1.0 M7 Released!

WSO2 IoT Server 3.1.0 Milestone 7 We are pleased to announce WSO2 IoT Server 3.1.0 Milestone 7 release. It can be downloaded from v3.1.0-M7 . WSO2 IoT Server is a complete solution that enables device manufacturers and enterprises to

Re: [Dev] [IS] Authorization granted for a SP for a different tenant's user when SaaS is disabled

On Monday, May 8, 2017, Pulasthi Mahawithana wrote: > Hi Sathya, > > I think it would be better to do this with a application mgt listener > rather than doing this at the validation time. We can use a > "ApplicationMgtListener.doPostUpdateApplication()"[1] implementation and

Re: [Dev] [IS] Authorization granted for a SP for a different tenant's user when SaaS is disabled

Hi Sathya, I think it would be better to do this with a application mgt listener rather than doing this at the validation time. We can use a "ApplicationMgtListener.doPostUpdateApplication()"[1] implementation and invalidate all the tokens issued to users from other tenants when the application

Re: [Dev] [IDENTITY-5131] A solution for the possible deadlock due to session cleanup task

Hi All, Is there any reason for running the session clean up task and operation data clean up task separately? Since they are performing a combination of select and delete operations on the same table, there is a chance that they end up in a dead-lock if they happen to run concurrently. So shall

[Dev] [IS] Authorization granted for a SP for a different tenant's user when SaaS is disabled

Hi All, This is in relation to issue [1] which happens when using a valid access token issued to a SaaS enabled application (application in a separate domain. User from another tenant domain). After disabling SaaS, it is still possible to use the same access token to access the UserInfo endpoint

Re: [Dev] [DEV][API-M] Localization at tenant level

This doesn't look like a tenant level thing. Once these instructions are followed, it will change the language for anyone who access the publisher or store. On Mon, May 8, 2017 at 3:14 PM, Pubudu Priyashan wrote: > Hey guys, > > I was going through the document at [1] on

Re: [Dev] Tool to Analyze Performance of MB 4 Message Store

I don't think it's good to use a "micro-benchmarking" tool to measure the performance of MB Message Store with different database types. Can't we use Apache JMeter similar to our standard performance tests? On Mon, May 8, 2017 at 9:39 AM, Asanka Abeyweera wrote: > Hi

[Dev] WSDL specification ESB (wso2ei 6.1)

I need to define/expose a new API that is described by a specific SOAP WSDL. The calls received there will be channeled to other systems/web services, pending the necessary message transformation. How do I define this project in ESB? My problem is that I cannot find where to define an entry

[Dev] [DEV][API-M] Localization at tenant level

Hey guys, I was going through the document at [1] on changing the language in API-M Publisher/Store. I would like to know if this is possible to do at tenant level? Or would that automatically pick up if we place the language specific files in advised locations in the document and update the

[Dev] Developer Studio

When I try open proxy with XQuery transformation, then all from my proxy source code is removed. In console I got this error: In version 3.7.1 it's fine. Problem is in higher versions. -- View this message in context:

Re: [Dev] [Dashboard] Sharing a dashboard in UUF Dashboard Component

Hi Ayoma, Thanks for the clarification. The purpose of widget state is to contain non-sensitive information such as filter criteria of widgets (ex. date range to select data from a database). We do not recommend storing sensitive information such as access token in the hash since it will be