wso2is

问题 I'm a newbie using WSO2 IS 5.0.0 and ESB 4.8.1, trying out this example @ http://hasini-gunasinghe.blogspot.sg/2011/08/fine-grained-authorization-to-restful.html (had changed xacml 2.0 to 3.0 policy, published policy to PDP) Had also referred to https://malalanayake.wordpress.com/2013/02/13/authentication-and-authorization-with-wso2esb-and-wso2is/ In user-mgmt.xml of ESB, had set AddAdmin to false, comment the org.wso2.carbon.user.core.jdbc.JDBCUserStoreManager section and uncomment the

问题 I need to implement SSO in my JAVA Web App with OpenID Connect. I already have experience in SSO with SAML 2.0 with WSO2 as Identity Provider. I am clear on the client part, and planning to implement the same with Spring Security. My question is, does it make sense to build my own Identity provider for OpenID Connect? For some reasons, I do not want to use any third party IDP (like WSO2). If yes, is there any library that can help? If no, what are the best IDP I can use for OpenIDConnect?

问题 I'm trying to get the SAML2BearerGrantHandler in APIM 2.0.0 up and running. I'm using Auth0 as the IdP with their SAML2 add on. I've created the IdP in carbon console, uploaded the signing cert etc. I sort of followed this document to test the grant: https://docs.wso2.com/display/AM200/SAML+Extension+Grant I get back an assertion, but when I try to get a token, I get this error: [2016-12-22 14:14:07,493] DEBUG - Starting to unmarshall Apache XML-Security-based SignatureImpl element {org

问题 Hi im having while im trying to create a web application and i want to call the WSO2 identity server API RemoteUserStoreManagerService The error is this java.lang.NoSuchMethodError: org.wso2.carbon.um.ws.api.stub.RemoteUserStoreManagerServiceStub.addAnonymousOperations()V org.wso2.carbon.um.ws.api.stub.RemoteUserStoreManagerServiceStub.populateAxisService(RemoteUserStoreManagerServiceStub.java:42) org.wso2.carbon.um.ws.api.stub.RemoteUserStoreManagerServiceStub.<init>

问题 I am using IS 5.0 and I created a group in wso2 IS using SCIM named 'developer' and also deleted the same group using SCIM. Both operations had worked fine.Now i need to create a group with same name 'developer' but i am getting following error {"Errors":[{"description":"Error when adding SCIM Attributes for the group: PRIMARY/developer A Group with the sameme already exists.","code":"500"}]} Any suggestion ? thanks in advance 回答1: This is a known issue (here is the JiRA) which will be fixed

问题 I'm evaluating WSO2 Identity Server 5.0.0 SP1. I'm receiving an error when I click on the "Resident Identity Provider" link in the admin website. This error message is "Error while loading Identity Provider" . I'll include the stack from the log file at the end of this post. So far, all I have configured is a secondary user store which is connected to an Active Directory server. The users and groups are being displayed in the users/roles screens. I do get another error if I click on the User

问题 I have using wso2 IS with another configured identity provider like: google,yahoo. when i logged form IDP and redirect back to callback URL my application call /outh2/token API to fetch id_token base on authorization_code but the problem is not getting remote claim (IDP custom claim attribute) which i have configured in service provider mapping.I have facing this issues randomly not for all user. Success claims Log :TID: [-1234] [] [2018-04-24 07:25:03,300] DEBUG {org.wso2.carbon.identity

问题 I need to implement the following scenario: Two or more device need to be logged in at the same time with same credentials By one (or more) device consumes the refresh token in order to generate another token Other devices continue to be logged in. In other words, other devices must be able to use the same refresh token in order to generate another access token at some other time Actually happens is that the first device that uses the refresh token makes the refresh token invalid for other

问题 WSO2 5.3.0. I am attempting to put in a local authentication step into my flow BEFORE basic auth runs. This is to aid in upgrading our password hashing algorithm (see this other question I asked) The problem (I think) I am running into is that the initiateAuthenticationRequest is not being called for my new local authenticator (so username is null at the time, the basic authenticator runs to pop the login screen and fill it in, but my code never reruns). EDIT: My initiateAuthenticationRequest

问题 What I wanna do is : 1.SSO with wso2 Identity server 5.1.0 and wso2 API manager 1.10.0 (done) reference : https://docs.wso2.com/display/AM1100/Configuring+Single+Sign-on+with+SAML2 2.Login wso2 API manager 1.10.0 via Facebook credential (fail) reference : https://docs.wso2.com/display/IS510/How+To%3A+Login+to+the+Identity+Server+using+Facebook+Credentials The situation is : 1.When I go to the login page of APIM , it will redirect to Facebook login page via Identity server. 2.I login to