wso2-am

问题 I want to add SecondaryJDBCUserStore for JDBC[MySQL],added successfully, but i am getting issue with login,roles and permission I am running WSO2 IS KM and WSO2 AM on diffrent VM. I have removed embedded LDAP and implemented AD[LDAP] as primary user store and it is working perfect with all roles and permission as expected. Recently I have added SecondaryJDBCUserStore for JDBC[MySQL] but i am getting issue with roles and permission.Below are the steps: Added SecondaryJDBCUserStore from CARBON

问题 I am using wso2 api manager 3.0 and unable to make any changes in api-manager.xml, whatever changes, I made those get reverted after the restart of server. I tried it from changing the off-set port and dev portal url . Any suggestions ? 回答1: In API Manager 3.0.0, the configuration model has been changed. All configurations can be found in a single file named as deployment.toml which is located in <APIM-Home>/repository/conf. You have to add/change configurations in that file. For instance, in

问题 I found strange behavior during checking functionality of WSO2 AM + IS as key manager. Env I: WSO2 AM 3.2.0 (GA pack) Env II: WSO2 AM 3.2.0 (GA pack) WSO2 IS 5.10.0 (GA pack) Configuration: created users: user-low, user-high created roles: low, high user-low has assigned low role user-high has assigned high role created shared scopes: high-scope, low-scope high-scope pointed to high role low-scope pointed to low role published api with 2 endpoint /unsecure (has pointed scope: low-scope)

问题 We have a mobile app which is required to go through WSO2 API Manager to access some APIs. Because of oauth2 authentication, we need to store username & password in mobile app, is it safe? for example, username & password could be used to logon API Store, Is there any alternative solutions for this situation? 回答1: You can use 'User Access Token'. That is the recommended approach for mobile apps. Refer to this WSO2AM doc for more info. The following blog posts also has some detailed

问题 We have a mobile app which is required to go through WSO2 API Manager to access some APIs. Because of oauth2 authentication, we need to store username & password in mobile app, is it safe? for example, username & password could be used to logon API Store, Is there any alternative solutions for this situation? 回答1: You can use 'User Access Token'. That is the recommended approach for mobile apps. Refer to this WSO2AM doc for more info. The following blog posts also has some detailed

问题 I am having a requirement to publish all APIs developed to run on ports 80 and 443 instead of 8280 and 8243. I changed the axis2.xml as below and restarted the API Manager server. <parameter name="port" locked="false">80</parameter> <parameter name="port" locked="false">443</parameter> I can see published APIs in API store showing 80 and 443 ports respectively. But when I am trying to test it using Postman like below URL, it throws the below error. URL: http://localhost:80/pizza & https:/

问题 I'm using APIM-3.1.0 and I need to Redirect APIs’ based upon header or request parameter. I have tried for request parameter but unable to call different API's. I have used below custom mediation policy and added it to a test API, but unable to call the different URLs. Every time I was calling API, I was getting output for the else part (URL mention in the else part) in below code even if I am passing the value of operation as menu. <sequence xmlns="http://ws.apache.org/ns/synapse" name=

问题 I'm using APIM-3.1.0 and I need to Redirect APIs’ based upon header or request parameter. I have tried for request parameter but unable to call different API's. I have used below custom mediation policy and added it to a test API, but unable to call the different URLs. Every time I was calling API, I was getting output for the else part (URL mention in the else part) in below code even if I am passing the value of operation as menu. <sequence xmlns="http://ws.apache.org/ns/synapse" name=

问题 Is it possible to remove security for some specific requests in my api list using WSO2 API manager version 3. For example, I have following requests /customer - post /products - get /customer/address - get In my case I don't need security for /products - get . Update I tried the suggestion @Pubci getting request response Invalid Credentials. Make sure your API invocation call has a header: 'Authorization : Bearer ACCESS_TOKEN' or 'Authorization : Basic ACCESS_TOKEN' or 'apikey: API_KEY 回答1:

问题 i am using WSO2 Enterprise Integrator 6.5.0 (lastest) I need to enable HTTP Basic Authentication through a Proxy Service (SOAP, REST) I have tried below resource - WSO2 EI and WSO2 Developer - Setup an ESB Proxy with http basic authentication <?xml version="1.0" encoding="UTF-8"?> <proxy name="ProxyWithBasicAuth" startOnLoad="true" trace="disable" transports="https" xmlns="http://ws.apache.org/ns/synapse"> <target> <endpoint name="endpoint_urn_uuid_xxxxxxxx-yyyy-zzzz-1111-234567892345">