[Dev] WSO2 Identity Server 5.4.0 is now OIDC Certified

Hi all, We were able to receive the OIDC certification for IS 5.4.0 (For basic and implicit profiles). Now we are listed under [1]. Thanks Hasini (https://github.com/hasinidilanka) and Nipuni ( https://github.com/NipuniBhagya) for taking the responsibility and carrying this out. [1]

Re: [Dev] [dev] Scope Management with OAuth Scopes

On Thu, Jan 18, 2018 at 1:41 PM, Nuwan Dias wrote: > The permissions of the use role have no relevance to the issuance of the > token. For a user to obtain a token with a certain set of scopes, the two > criteria below needs to be fulfilled. > > 1) The user should be in a role

Re: [Dev] Registry database resource updating/loading policies

Hi all, I have WSO2 APIM 2.1.0 server started and logged into management > console with a tenant admin. Here I browse the registry and update a > certain resource (i.e. > /_system/governance/repository/components/org.wso2.carbon.governance/types/documentation.rxt). > But this change seems not

Re: [Dev] Running periodic task inside a microservice

Hi Godwin/Menaka, On Fri, Jan 19, 2018 at 1:26 AM, Menaka Jayawardena wrote: > Hi Miraj, > > I also agree with Godwin's idea and +1 for the 2nd option. > > Thanks and Regards, > Menaka > > > On Thu, Jan 18, 2018 at 7:32 PM, Godwin Shrimal wrote: > >> Hi

[Dev] [Announce] [Architecture] WSO2 Enterprise Integrator 6.1.1-update17 Released !

Hi All, The WSO2 Integration team is pleased to announce the release of Enterprise Integrator 6.1.1-update17. It is available for download from here *Tasks/Bug Fixes and Improvements* -

[Dev] Registry database resource updating/loading policies

Hi, I have WSO2 APIM 2.1.0 server started and logged into management console with a tenant admin. Here I browse the registry and update a certain resource (i.e. /_system/governance/repository/components/org.wso2.carbon.governance/types/documentation.rxt). But this change seems not to effect until

[Dev] WSO2 API Manager 2.1.0-update7 Released!

The WSO2 API Manager team is pleased to announce the release of version 2.1.0-update7 of API Manager. WSO2 API Manager is a platform for creating, managing, consuming and monitoring APIs. It employs proven SOA best practices to solve a wide range of API management challenges such as API

Re: [Dev] //jsonOject and $ are printing different jsons (different data content) at same location in API.

Please provide the link to download the latest version wso2 EI. With Regards, Aditya On Fri, Jan 19, 2018 at 10:18 AM, Riyafa Abdul Hameed wrote: > Hi Aditya, > > We observed this behavior. As I mentioned in my previous reply can you > report an issue? > > Regards, > Riyafa >

[Dev] [Architecture] WSO2 Identity Server 5.5.0-M1 Released!

The WSO2 Identity and Access Management team is pleased to announce the release of WSO2 Identity Server 5.5.0 M1 What's new in WSO2 Identity Server 5.5.0 M1 New Features & Bug Fixes: A list of new features and bug fixes shipped with this release can be found here

Re: [Dev] //jsonOject and $ are printing different jsons (different data content) at same location in API.

Hi Aditya, We observed this behavior. As I mentioned in my previous reply can you report an issue? Regards, Riyafa On Fri, Jan 19, 2018 at 10:09 AM, aditya shivankar < shivankar.adit...@gmail.com> wrote: > Hi , > > My Question is while printing //jsonObject I am able to print enriched > value

Re: [Dev] //jsonOject and $ are printing different jsons (different data content) at same location in API.

Hi , My Question is while printing //jsonObject I am able to print enriched value tag "Value" as well. But while printing $ "value" element is missing . While both logs are printed at same location in flow. Log print of *//jsonObjec*t after enrichment: d8ccf265-6651-468f-8d1f-d935c3c7d857

Re: [Dev] //jsonOject and $ are printing different jsons (different data content) at same location in API.

Hi Aditya, We tested your scenario and observed that the log and the payload factory are missing the "value" part. Can you please report an issue on this[1]. Please make sure to indicate the complete steps to reproduce by including the synapse configurations. Can you also check if the issue

Re: [Dev] Define tomcat connector as first in the order in catalina-server.xml for mutual SSL with X509 authenticator

Adding rajas and connector team members On Thu, Jan 18, 2018 at 4:55 PM, Indunil Upeksha Rathnayake < indu...@wso2.com> wrote: > Hi, > > Each of the elements in catalina-server.xml, defines one port > number on which tomcat will listen for requests. AFIK, the trust store file > use to validate

Re: [Dev] Need of importing the CA certificate to JVM trust store in mutual SSL with X509 authenticator

Adding rajas and connector team members On Thu, Jan 18, 2018 at 5:58 PM, Indunil Upeksha Rathnayake < indu...@wso2.com> wrote: > Hi, > > As per the documentation in [1], the certificate of CA, which issued the > client certificate, should be added into the JVM trust store. Please find > the

Re: [Dev] //jsonOject and $ are printing different jsons (different data content) at same location in API.

Hi Aditya, //jsonObject is an XPATH expression. When you apply an XPATH evaluation on a JSON, ESB / EI internally convert the JSON to XML, that's why you are seeing XML for //jsonObject xpath evaluation. Since you are sending a JSON payload it is good to use $ (which is a JSON path) Regards

Re: [Dev] User-core component in Kernel v4.4.11

Hi Harshan, Can you checkout the exact tag and check. In the UI it seems to be showing the v4.4.11 branch instead of the tag and the branch has C5 code for some reason. On Fri, Jan 19, 2018 at 8:12 AM Godwin Shrimal wrote: > Hi Harshan, > > Not only user-core component. I

Re: [Dev] User-core component in Kernel v4.4.11

Hi Harshan, Not only user-core component. I can't see any component in kernel tag v4.4.11. Thanks Godwin On Fri, Jan 19, 2018 at 8:46 AM, Harshan Liyanage wrote: > Hi all, > > I'm unable to find the user-core component in kernel tag v4.4.11 [1]. But > it is available under

[Dev] User-core component in Kernel v4.4.11

Hi all, I'm unable to find the user-core component in kernel tag v4.4.11 [1]. But it is available under v4.4.12. [1]. https://github.com/wso2/carbon-kernel/tree/v4.4.11/core/org.wso2.carbon.user.core/pom.xml Thanks, Harshan Liyanage Mobile: *+94765672894* Email: hars...@wso2.com Blog :

[Dev] //jsonOject and $ are printing different jsons (different data content) at same location in API.

Respected Sir, //jsonOject and $ are printing different jsons at same location in API. Are not both suppose to have latest json payload, //jsonObject - latest json payload in xml format $ - latest json payload in json format ? Input json: { "token":

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Hi Thomas, Ok, When you send a request to token API in the APIM, it should call the oauth2 token API of the IS (if you have configured IS as a Keymanager correctly), So according to the behaviour (with the given information), there is something wrong with your Keymanager related configurations in

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Hi Thomas, Try a request similar to following and see if it works. You need to change the values highlighted. curl -k -X POST -H "Authorization: Basic **" --data "grant_type=password=openid=*WSO2.COM/tharindu *=*tharindu*" https://apim:8243/token Thanks, TharinduE

Re: [Dev] [Architecture][IS 5.5.0] Conditional steps based on HTTP context

Hi, Thanks for the suggestion. I have modified the existing DefaultRequestCoordinator and removed ConditionalRequestCoordinator since there are no functional level changes in DefaultRequestCoordinator. Following is a sample script to enforce conditional authentication based on the HTTP context.

Re: [Dev] Running periodic task inside a microservice

Hi Miraj, I also agree with Godwin's idea and +1 for the 2nd option. Thanks and Regards, Menaka On Thu, Jan 18, 2018 at 7:32 PM, Godwin Shrimal wrote: > Hi Miraj, > > If the microservice only perform this particular task (periodically call > the resource) I think it's

[Dev] Authorization None

Hi All, I have just created an API with authorization none (without Oauth Authentication), but I'm getting the error below. Production Key Provided for Sandbox Gateway API Manager 2.0.0 has been installed as single node and sandbox gateway only, so there is no production gateway. Do you

Re: [Dev] [dev] Scope Management with OAuth Scopes

The permissions of the use role have no relevance to the issuance of the token. For a user to obtain a token with a certain set of scopes, the two criteria below needs to be fulfilled. 1) The user should be in a role that is bound to the scope being requested. 2) The particular application that

Re: [Dev] Running periodic task inside a microservice

Hi Miraj, If the microservice only perform this particular task (periodically call the resource) I think it's useless to keep running a JVM and I am +1 for your second option. Thanks Godwin On Thu, Jan 18, 2018 at 2:58 PM, Miraj Abeysekara wrote: > Hi all, > > I want to check

[Dev] [dev] Scope Management with OAuth Scopes

Hi All, I need to clarify if the below scenario is valid. Role Permission Scope Resource HRDept Admin Permission add_user POST Accounts Login, api create, api publish, api subscribe search_user GET 1. The role HRDept(With admin permission) can create an application and generate access token

[Dev] WSO2 Identity Server 5.4.0 Update5 Released !!!

The WSO2 Identity and Access Management team is pleased to announce the release of WSO2 Identity Server 5.4.0 Update5. You can build the distribution from the source tag, Runtime: https://github.com/wso2/product-is/releases/tag/v5.4.0-update5 follow the steps given below. *Building from the

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Hello Godwin, Thank you for the directions. But I found out that the hostname of the IS was bound to the wrong IP in my hosts file. It is awkward :s Regards, Thomas 2018-01-18 14:25 GMT+01:00 Godwin Shrimal : > Hi Thomas, > > Ok, When you send a request to token API in the

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Great to hear you could resolve the issue :) Thanks Godwin On Jan 18, 2018 8:39 PM, "Thomas LEGRAND" wrote: > Hello Godwin, > > Thank you for the directions. But I found out that the hostname of the IS > was bound to the wrong IP in my hosts file. It is awkward :s

[Dev] [Architecture] WSO2 API Manager 3.0.0-M14 Released!

The WSO2 API Manager team is pleased to announce the release of API Manager 3.0.0-M14. It's now available to download. Distribution - https://github.com/wso2/product-apim/releases/download/v3.0. 0-m14/wso2apim-3.0.0-m14.zip - https://github.com/wso2/product-apim/releases/download/v3.0.

Re: [Dev] Logging in JavaScript used in conditional authentication

On Wed, Jan 17, 2018 at 10:38 PM, Thusitha Kalugamage wrote: > Hi Maduranga, > > I'm not sure whether we can have a 1 to 1 mapping between Apache commons > logging and all the methods available for console object or not. But > wouldn't it be confusing for the user to support a

[Dev] Need of importing the CA certificate to JVM trust store in mutual SSL with X509 authenticator

Hi, As per the documentation in [1], the certificate of CA, which issued the client certificate, should be added into the JVM trust store. Please find the following concerns regarding this. - We should add the CA certificate which issued the client certificate, as a certificate authority

[Dev] Running periodic task inside a microservice

Hi all, I want to check for a response from 3rd party service to determine the availability of a user in that system and send an email notification once that user is available. I am planning to develop a microservice for the above requirement which periodically calls to that 3rd party service.

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Hello Godwin, For you first point: I created a user from the IS console in the primary user store. I can see it from the AM console. Then I tried with cUrl to generate a OAuth token for this user and that works: curl -v --basic -u Lz6FaylMv5fF5ax4TrTZzlvlEowa:ih0znfMUS6lgqShXSYcDlhEUMqYa -k -d

[Dev] Define tomcat connector as first in the order in catalina-server.xml for mutual SSL with X509 authenticator

Hi, Each of the elements in catalina-server.xml, defines one port number on which tomcat will listen for requests. AFIK, the trust store file use to validate client certificates of the connections for a particular port, should be what defined in the connector configuration. This will essentially

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Hi Thomas, Ok, That means you have configured secondary user store correctly and its ready for authentication. When you call the token endpoint of the API manager, that API calls the API of the IS to create the access token (If you have properly configured IS as a Keymanager), then authentication

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Hello everybody, First, thank you for all of your answers :) Then, here is a screenshot of the users list in the **IS**, where we can see that I have a user (versusmind) stored in a secondary user store (with the domain RGPD) : [image: Images intégrées 1] Then, I tried to execute the following

Re: [Dev] API Manager with Identity Server as Key Manager - IS secondary user store to connect to APIM Store

Hi Thomas, Do you have special characters in your password? If so could you please try encoding the url characters in your password and execute the curl command again? Thanks & Regards, Mushthaq On Wed, Jan 17, 2018 at 7:11 PM, Thomas LEGRAND < thomas.legr...@versusmind.eu> wrote: > Hello, > >