wso2is

问题 Has anyone attempted to do this, as in use stormpath as the identity server with WSO2 API Manager instead of WSO2s Identity Server? Any information would be greatly appreciated. 回答1: You won't be able to connect the stormpath identity server directly. but you can plug that identity server to wso2 identity server and use it. You will have to create a custom federated authenticator for this see https://docs.wso2.com/display/IS510/Federated+Authentication . Default pack contains federated

问题 I would like modify the domain of the primary user storage (based on LDAP), but i can not get successfully. The current domain in user-mgt.xml is dc=wso2,dc=org and I would like to change to dc=foobar,dc=com My modified user-mgt.xml is: ... <UserStoreManager class="org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager"> <Property name="TenantManager">org.wso2.carbon.user.core.tenant.CommonHybridLDAPTenantManager</Property> <Property name="defaultRealmName">FOOBAR.COM</Property>

问题 I have added a new custom attribute named policyid in claim management(as per the post ), Now i want to add the profile details via SCIM endpoint.I tried with the following curl command.. curl -v -k --user admin:admin --data "{"schemas":[],"name":{"familyName":"gunasinghe","givenName":"hasinitg"},"userName":'jouhar',"password":"password"," policyid":"123" ,"emails":[{"primary":true,"value":"hasini_home.com","type":"home"},{"value":"hasini_work.com","type":"work"}]}" --header "Content-Type

问题 I'm trying to activate the kerberos KDC on a WSO2 Identity Server, I'm following this tutorial: https://docs.wso2.com/display/IS510/FAQ#FAQ-HowcanIsetupWSO2ISasaKDC? The thing is that I can activate the Kerberos KDC, but I can't find this option in the management console. Now login thorough management console and go to Configure -> Kerberos KDC -> Service Principals. You can see that "Add new service principals" option is now enabled and you'll be able to add service principals through that

问题 In WSO2IS 5.3.0, I'm changing the email template from the administration console. But when I received the mail, by calling the soap webservice UserInformationRecoveryServiceStub.registerUser , I'm getting the original previous template. Same thing appends for account confirmation and reset password. I tried to restart wso2is, same issue, the modifications are well set in the admin gui, but not in the sending email. Is there a cache or registry to previously clear/delete ? Although, the email

问题 I encountered a problem in using WSO2 Identity Server. I have a web server using SAML2 in Identity Server for SSO. After login, Identity Server return the saml response message: <?xml version="1.0" encoding="UTF-8"?> <saml2p:Response Destination="http://localhost:8080/travelocity.com/home.jsp" ID="lfkelagpefmnohdlcalkpoeobnahpjapkfljnoah" InResponseTo="mieoddeiiebbaphejlfdgaiojbnogmpnnhijaema" IssueInstant="2016-01-02T17:31:47.863Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0

问题 My IS is running on EC2 and sending slo to https://ec2-52-XXXXX.amazonaws.com:9443/samlsso?slo=true after logout the page redirects to localhost:9443/authenticationendpoint/samlsso_logout.do . I was expecting it should be https://<IS_Server>:9443/authenticationendpoint/samlsso_logo‌​ut.do . Any idea what I am missing? How/Where to specify and change the urls? 回答1: You have to specify the host name at carbon.xml. Please see my answer here for details. 回答2: You need to configure SLO URL in

问题 I am working with the WSO2 IS 5.2.0 for some reasons, I would like to change the data schema of the default embedded H2 database. for example, the maximum length of volume "ACCESS_TOKEN" in table "IDN_OAUTH2_ACCESS_TOKEN" is 255 chars. I would like to change it to 8194. I made the following change the configuration file "/dbscripts/identity/h2.sql" (see the value "8194") CREATE TABLE IF NOT EXISTS IDN_OAUTH2_ACCESS_TOKEN ( TOKEN_ID VARCHAR (255), ACCESS_TOKEN VARCHAR (8194), REFRESH_TOKEN

问题 I have configured SAML SSO in WSO2 Identity Server 5.1.0 with my application. I want to have opportunity to lock/disable users from login with WSO2 login page. How to solve this? PS: Account Locked claim do not work. (work only for carbon login) 回答1: Working, when adding Account Locked claim in Claim Configuration in Service Provider configuration. 来源： https://stackoverflow.com/questions/41661582/wso2-is-saml-sso-lock-user-from-login

问题 When ever WSO2 ID Server or WSO2 API Manager starts , it always listens to port 9999.. How can i change this port to some other port? I have tried editing carbon.xml RMIRegistryPort .But no luck..Its still listening to port 9999.. 回答1: "listening for transport dt_socket at address" message will get printed when server is stared in debug mode. check JAVA_OPTS , debug option[1] might have been set in system level so all application will get affected [2] [1] JAVA_OPTS=-Xdebug -Xnoagent -Djava