wso2-am

WSO2 APIM clustering - how to improve the response time?

时光毁灭记忆、已成空白 提交于 2019-12-08 03:33:18
问题 I clustered APIM with 1 manger gateway node and 2 or more work node to test APIM response time. it did not give me good data. without APIM,my api response time is 20 ms.though APIM 400ms-1s. how to confige this question? 回答1: There are several handlers in APIM, through which all API calls are going. Eg. Authentication, Throttling, CORS etc. You can enable analytics in APIM and see a latency breakdown graph among stages. See Figure 9 of this article. Then you can identify if there are any

validating a JWT generated by WSO2 APIM 1.9.0: what's the public key?

爷,独闯天下 提交于 2019-12-07 22:54:55
问题 I'm trying to do something that seemed simple but ends up being difficult because I lack the expertise. I have an APIM deployed with no customisation security-wise (don't worry, it's not production!). So it's only got carbon.jks . I authenticate users in an application with SAML2 against an IDS, then use the APIM with an app secret for a user token generated from the SAML2 token. I get from the APIM an OAuth token which I use to call APIs in the APIM. (note that I managed to resolve this

WSO2 API Manager - Can I hide tenant stores in the public store?

╄→尐↘猪︶ㄣ 提交于 2019-12-07 16:39:40
问题 Is it possible to hide tenant stores, so the they aren't visible in the public store, but only by their direct tenant specific store URL (like: https://api.mydomain.com/store/?tenant=mycustomer.com)? Background info: All our customers get their own tenant in the WSO2 API Manager. When an anonymous/unauthenticated visitor opens the public store (https://api.mydomain.com/store) he/she will see all tenant stores and their domain names. So it isn't really hard to discover the names of all our

ERROR on API Manager 2.0.0 gateway worker on start-up

感情迁移 提交于 2019-12-07 15:57:17
问题 The following ERROR is logged on the gateway worker nodes on start-up. 2016-08-23 12:32:42,344 [-] [Timer-5] ERROR KeyTemplateRetriever Exception when retrieving throttling data from remote endpoint Unexpected character (<) at position 0. at org.json.simple.parser.Yylex.yylex(Unknown Source) at org.json.simple.parser.JSONParser.nextToken(Unknown Source) at org.json.simple.parser.JSONParser.parse(Unknown Source) at org.json.simple.parser.JSONParser.parse(Unknown Source) at org.json.simple

hostname in certificate didn't match:<>!=<> WSO2 APIM

僤鯓⒐⒋嵵緔 提交于 2019-12-07 10:31:15
问题 I have a https endpoint and I need to access it from wso2 API manager. (uses 1.10).I already added the certificate files to "client-truststore.jks" file. But now it gives an error as follows. hostname in certificate didn't match:<ip>!=<entry name>. I have already updated the axis2.xml file as follows also. <parameter name="HostnameVerifier">AllowAll</parameter> How can I solve this issue with WSO2 APIManager to access this https backend service 回答1: The CN of the certificate should match with

Programmatically add custom handler in WSO2 API Manager

白昼怎懂夜的黑 提交于 2019-12-07 10:17:09
问题 I create and subscribe new APIs through an automated process that uses WSO2 API Manager's Publisher and Store HTTP APIs respectively. I have custom handlers that I then map to my APIs by editing the XML files in <APIM_HOME>/repository/deployment/server/synapse-configs/default/api . Is there a way to programmatically map the handlers to the newly created APIs so that I don't have to edit the XML manually? In other words, an API or other method to see the current handlers for an API, and add

WSO2 API Manager, invalid. unable to find valid certification path to requested target

こ雲淡風輕ζ 提交于 2019-12-07 08:00:56
问题 I have launched WSO2 API Manager locally. I'm trying to add API endpoint with https connecttion. It shows me that kind of error. It shows me Invalid. unable to find valid certification path to requested target error message. Then I have downloaded certificate, which is cer file from website and in carbon page I have imported certificate to wso2carbon keystore: After that I restart my WSO2 API Manager and try to test this endpoint and it still throws me that error. What did I miss? Console

wso2 API manager for authorsation and authentication of a web application

孤街浪徒 提交于 2019-12-06 20:52:31
I have a web app where front end layer has a angular based UI.It has both public pages and other private pages which are accessible to logged in users and it depends on roles of the logged in users as well My server based application is a java based rest service api . How can i use wso2 for handle user authenticaiton and role based authorsation.i would like to have an additional layer of api security depending on the role of the user as well. can someone explain the best architecture for this in wso2? if i use wso2 api manager , how can i handle login's of the user and how to relate api access

validating a JWT generated by WSO2 APIM 1.9.0: what's the public key?

感情迁移 提交于 2019-12-06 09:33:56
I'm trying to do something that seemed simple but ends up being difficult because I lack the expertise. I have an APIM deployed with no customisation security-wise (don't worry, it's not production!). So it's only got carbon.jks . I authenticate users in an application with SAML2 against an IDS, then use the APIM with an app secret for a user token generated from the SAML2 token. I get from the APIM an OAuth token which I use to call APIs in the APIM. (note that I managed to resolve this thanks to another post here some time ago :-) ) The backend that implements the APIs receives a JWT as a

WSO2 API Manager - Can I hide tenant stores in the public store?

只谈情不闲聊 提交于 2019-12-05 21:24:17
Is it possible to hide tenant stores, so the they aren't visible in the public store, but only by their direct tenant specific store URL (like: https://api.mydomain.com/store/?tenant=mycustomer.com )? Background info: All our customers get their own tenant in the WSO2 API Manager. When an anonymous/unauthenticated visitor opens the public store ( https://api.mydomain.com/store ) he/she will see all tenant stores and their domain names. So it isn't really hard to discover the names of all our customers. This is undesirable. I know that the public store is supposed to promote public API's, but
订阅 wso2-am