wso2is

The picture bellow shows the architecture that I need to deploy, and it explains my problem. I already designed a sub system that contains a set of applications (web services, web applications) deployed in apache tomcat. To provide the SSO functionality to my sub-system I used the WSO2 Identity Server with SAML2.0 to authenticate users and get access to all sub-system applications. This sub system is destined to be integrated into enterprises environment and work together with enterprise components. Now I need that enterprise users get access to my applications (of sub-system) there is two

When I get SAML Assertion from Identity Server, DigestValue and SignatureValue are empty :\ Assertion: <?xml version="1.0" encoding="UTF-8"?><saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="lhgklipdcdifghfbehlmdbbghndlgdpbdeggppjd" IssueInstant="2016-12-28T10:22:35.668Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema"><saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">localhost</saml2:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc

I am testing SAML SSO using WSO2 Identity Server 5.0.0 with two PHP application instances as service providers (using onelogin phpsaml). I managed to make the single sign on to work but now I'm facing a problem with single logout. When I trigger a logout request from the PHPApp1, WSO2 IDP responds with a logout response and it seems to works fine; WSO2 IDP triggers a logout request to the saml session particants, in this case to the PHPApp2; The PHPApp2 handles the logout request and redirect to the WSO2 IDP logout url with the LogoutResponse; And now the issue: WSO2 does not seems to handle

I followed the steps provided by the below links to create a policy in the wso2 application manager and publshing http://wso2.com/library/articles/2014/02/use-of-wso2-api-manager-to-validate-fine-grained-policy-decisions-using-xacml/ After created the XACML Policy trying to publish it to PDP,getting the following error [2014-09-15 15:52:53,007] ERROR - ApplicationDispatcher Servlet.service() for servlet bridgeservlet threw exception java.lang.NoSuchMethodError: org.wso2.carbon.identity.entitlement.stub.EntitlementPolicyAdminServiceStub.publishPolicies([Ljava g;Ljava/lang/String;ZI)V at org

I'm trying to build an application with a WSO2 Application server and Identity server. the soap server which is based on Axis2 Framework needs to have WS-Trust based Authentication. For learning, I'm following this blog http://www.vitharana.org/2015/01/how-ws-trust-sts-works-in-wso2-identity.html At the end when I run the sample application I get following error. Sample Application is from https://github.com/ajithnv/blog_resources/tree/master/sts-client org.apache.axis2.AxisFault: Missing wsse:Security header in request at org.apache.rampart.handler.RampartReceiver

curl -v -X POST -H "Authorization: Basic <base64 encoded client id:client secret value>" -k -d "grant_type=password&username=<username>&password=<password>" -H "Content-Type:application/x-www-form-urlencoded" https://localhost:9443/oauth2/token (from https://docs.wso2.com/display/IS520/Resource+Owner+Password+Credentials+Grant ) This 'curl' command works perfectly. But when try to call it through ajax: $.ajax({ type: 'POST', data: 'grant_type=password&username=admin&password=admin', headers: { 'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': 'Basic

Using java client, I have generated the SAMLRequest string Is there a way to post the whole data, and skip the IdentityServer login page? With the data which I pass, has to meet the authentication for SSO and then generate Oauth2Token. You can use request path authentication and send the username, password in the same request, which will give you the SAML assertion. You can later use SAML2 bearer grant type to exchange that assertion to an oauth token. 来源： https://stackoverflow.com/questions/40932541/wso2is-skip-authenticationendpoint-login-do