wso2is

问题 I have found that my users are sometimes entering a trailing space after their username. This happens most often when copy & pasting their user name from an email or other electronic document. What happens is that the server will trim that space when authenticating that user, which then succeeds, but will not trim that space with retrieving claim values, which then fails. The result is that the user is passed to the service provider and then the service provider reports they do not exist. Is

问题 I'm using WSO2 identity server (on port 9443) and enterprise service bus (ESB, on port 9444). I configured ESB to use IS SSO. But everytime I try to login into ESB it redirects me to IS and there it redirects me to URL localhost:9443/samlsso. I already tried changing this URL in identities.xml and carbon.xml without access. Where can I configure the redirection address? In carbon.xml I specified the hostname as "HostName" and "MgtHostName". But IS still uses localhost. Thanks! 回答1: Ok, I

问题 I am managing my APIs using WSO2 API Mananger.Till now every API were private and can be accessed using an access token. The new use cases some API's which is purely public. Any one can access them anonymously. Just a GET,POST,PUT wihtout any token/access details should work. I exposed API's via WSO2 API Manager without any scopes. Tried to access them without any token ;but its not working.It says required oAuth credentails not found. Is there anything else to do to expose APIs so that they

问题 Is the source of service pack 1 for WSO2 Identity Server 5.0.0 publicly available? Where can I find the source in the SVN repository? 回答1: There aren't any source code for Service Pack. A Service pack is generated by aggregating patches provided for a product in WSO2. 来源： https://stackoverflow.com/questions/28063425/source-of-wso2-identity-server-service-pack

问题 What would be the URL for the newly set up SAML SSO's metadata URL, or how could I download this in XML format from WSO2 Identity Server (version 4.6.0) acting as IdP? Thanks, Tamas 回答1: AFAIK there is no option to auto-generate metadata files for IS. You have to manually write the metadata file. An example is as follows, taken from this blog post. <md:entitydescriptor entityid="https://localhost:9443/samlsso" validuntil="2023-09-23T06:57:15.396Z" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"

问题 I edited the user-mgt.xml to try and connect to a newly installed Apache DS LDAP. I created an ldap user person object in apache ds ldap located at: cn=admin,ou=users,o=southpark I tried READ ONLY section: <UserStoreManager class="org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager"> <Property name="ReadOnly">true</Property> <-Property name="MaxUserNameListLength">100</Property> <Property name="ConnectionURL">ldap://localhost:10389</Property> <Property name="ConnectionName">cn=admin

问题 have my rest webservices written in nodejs. I want to implement role based[admin,user,super admin etc] authorisation for these API's How can use wso2 with NodeJS ? 回答1: You can use WSO2 API Manager for this. Here is a nice article on how to do that. And here is official documentation. EDIT: You can read the complete product documentation here. And, there is an API Manager Cloud offering too. 来源： https://stackoverflow.com/questions/41164896/integrating-nodejs-rest-services-with-wso2

问题 I have this problem when using SAML SSO authentication. I have successfully set up WSO2IS 5.0.0 Identity server, I also succeeded setting up (at least I hope so) secondary user store. I used JDBCUserStoreManager implementation. I have set this store as DOMAIN. This user store works nice, at least I think it does. Because it is storing user attributes into its tables (USER_ATTRIBUTES) and those attributes are read by WSO2IS administration ... https://localhost:9443/carbon/userprofile/edit.jsp

问题 When I ask the information of the user WSO2, the response contains only his sub. Request GET https://srv-wso2.domain.com:9443/oauth2/userinfo?schema=openid Request headers {Accept=[application/json, application/*+json], Authorization=[Bearer 50ff3e7940248bdc01e2c1d33de77537], Content-Length=[0]} Response body {"sub":"RECIF/arnaud@carbon.super"} In repository/conf/identity/identity.xml file, OpenIdConnect is configured to use http://wso2.org/claims as UserInfoEndpointClaimDialect. I use an

问题 I'm evaluating WSO2 Identity Server and WSO2 API Manager. I registered an API and an application on API Manager. I can call the resources successfully. I could also add an user into Identity Server and log into that using oAuth authentication. But, it's not too clear how I can use those two systems together. I would like to use API Manager to expose my API's to some applications. And, I would like to use Identity Server to log the final user. Is that possible? How can I "plug" those two