wso2is

问题 Changing the port by changing the offset in the deployment.toml or using -DportOffset doesn't get applied to the Console and the My Account applications. How to reproduce: Change the offset by adding the following config to the deployment.toml [server] offset=2 Start the server Access the console app from https://localhost:9445/console Access the my account app from https://localhost:9445/myaccount Following error is displayed. Observed, that the reason is that the callback URL is not changed

问题 I am using WSO2 IS 5.10.0 running in the official Docker image and followed the guide here to setup session limiting for users with defined roles. I have attempted to use the main way described in the article (using the active-session-limit-handler), as well as the alternative method described in section 2 (using adaptive authentication Javascript functions). Neither method has worked for me. Through error logs I was able to trace the issue back to the following query: SELECT USER_ID FROM IDN

问题 We are using WSO2 SCIM apis to define roles to user and update it. For role update operation , we are currently adding the new user role(add user to new role group using SCIM api) , and then delete the existing user role (call users SCIM GET request under a GROUP, delete the existing user from the list and use the newly created list as body arguments to call SCIM PATCH request for the GROUP). With this approach , we were able to update roles. But as the user base increased , the above

问题 Following the below URL https://apim.docs.wso2.com/en/latest/install-and-setup/setup/distributed-deployment/configuring-wso2-identity-server-as-a-key-manager/#step-4-configure-wso2-is-with-wso2-api-m When I am trying to configure WSO2 IS 5.11.0 and WSO2 APIM 3.2.0, found below issues The table alternation sql commands are not working until removing AUTO_INCREMENT tag. The sql commands are shared_db ALTER TABLE REG_RESOURCE_COMMENT ADD COLUMN REG_RESOURCE_COMMENT_ID INTEGER NOT NULL AUTO

问题 I am configuring WSO2 fully distributed APIM 3.1.0 with IS as KM and Dev/Publisher in one node. My IPs are as below, Gateway IP - 172.42.42.20 DNS: gw.local.com ISKM IP - 172.42.42.40 DNS: iskm.local.com Dev/Publisher - 172.42.42.80 DNS: apim.local.com All the configurations are done following WSO2 documentation and ansible scripts. But an error occurred while generating tokens via devportal. Using the curl command the tokens can be generated successfully. How to fix this issue? The carbon

问题 I can use the API REST for XACML without problem following this article https://docs.wso2.com/display/IS560/Using+REST+APIs+via+XACML+to+Manage+Entitlement. My basic question is, how can i access to pdp endpoint for validate access for the logged user, using the access token of the user that i want to apply the access rules? For every request i need to send the admin user and password for tenant where the user that i can validate exist. I want to know if is possible to use this same endpoint

问题 I can use the API REST for XACML without problem following this article https://docs.wso2.com/display/IS560/Using+REST+APIs+via+XACML+to+Manage+Entitlement. My basic question is, how can i access to pdp endpoint for validate access for the logged user, using the access token of the user that i want to apply the access rules? For every request i need to send the admin user and password for tenant where the user that i can validate exist. I want to know if is possible to use this same endpoint

问题 For a service chaining purpose, I have to call SCIM2 Me endpoint from API manager mediation sequence. POST method to ADD user works fine, but GET/PUT/DELETE methods are not working. I have provided a code snippet of Get method I'm using in the sequence. <property name="uri.var.tenantDomain" expression="get-property('tenantDomain')" scope="default" type="STRING"/> <property name="NO_ENTITY_BODY" scope="axis2" action="remove"/> <property name="HTTP_METHOD" value="GET" scope="axis2" type="STRING

问题 I deployed to test the last release of WSO2 5.11.0 in Docker container. I did not change anything in the default configuration except the hostname and callbackURL for the "Console" and "My Account" service providers to match my hostname. Access to the carbon console is fine. But when I try to reach https://<hostname>/console or https://<hostname>/myaccount , I can fill my login and password, then I have a blank page without anything. Any idea is welcome. Thank you. 回答1: Taking the answer from

问题 I am sending https://localhost:9443/oidc/logout?id_token_hint=my_id_token and getting the page with the message Identity Server You have successfully logged out. But when I go back to the login page,it is returning authorization code instead of asking login/password. 回答1: According to the browser traces shared in the comments, it seems you are sending the logout request to an incorrect hostname+port (aisoip-devis.xxxxx.kz:9443). Due to that reason, the commonauthId cookie on the browser