Does the WSO2 Identity Server comply with the OCRA: OATH Challenge-Response Algorithm specification?
I've only read that it supports OATH-HOTP - Slide 14.
Related
I want to integrate with DocuSign and I found the wso2 connector for DocuSign 1.0.9 version.
The DocuSign connector has not been updated for some time now and I did not see the OAuth2 authentication capabilities there with the impersonation option.
Is this connector up-to-date and would work with wso2ei 6.4.0?
Is there another connector for DocuSign?
Best,
Pratyush
As per the connector store description for this connector this supports the EI 6.4.0 version. It seems that this is the only available connector for DocuSign.
Can you please check the documentation [2] this seems to be supporting OAuth2 authentication.
[1]-https://store.wso2.com/store/assets/esbconnector/details/335702ff-8e66-4a57-9e0a-b189aa4c50d2
[2]-https://docs.wso2.com/display/ESBCONNECTORS/Configuring+DocuSign+Operations
I have using WSO2 identity server,but i have facing problem for Policy creation,
because this is available in XACML Poliicy.
Document :
https://docs.wso2.com/display/IS570/Entitlement+with+APIs#EntitlementwithAPIs-publishToPDP()
any plugin any anything available for convert to REST API?
Yes there is no straight forward way to utilize PAP operations in REST way. But there are couple of alternate solutions.
If you are good in WSO2 EI (previously WSO2 ESB) you can use SOAP to REST transformation as per [1]
You can write your own java component as JAX-RS service in WSO2 Identity Server [2]
[1]https://docs.wso2.com/display/EI600/Using+REST+with+a+Proxy+Service#UsingRESTwithaProxyService-RESTClientandSOAPService
[2]https://wso2.com/library/articles/2016/10/article-exposing-wso2-identity-server-admin-services-the-rest-way/
A few days ago, I started to work with WSO2 Identity Server in my project as an authorization server in my architecture, I found that it can be interfaced with an external data source like LDAP, then I can use the enterprise LDAP instead re-create all users and roles in WSO2 IS.
My question is about authentication on WSO2 IS, when the user authenticates on WSO2 IS and approves access normally this is done by HTTPS protocol.
I don't know if it's possible to use another authentication protocol like Kerberos or Radius to connect to WSO2 IS?
by default the WSO2 IS on the frontend supports OAuth 2.0, SAML 2.0, OpenID and WS-Trust STS protocol. They are indeed all based on the HTTPS. Next to that you may use Kerberos KDC.
For Kerberos configuration you may check this article. http://wso2.com/library/articles/2012/07/kerberos-authentication-using-wso2-products/
g.
WSO2IS has the kerberos support [1]. But it doesn't support RADIUS yet.
[1] https://docs.wso2.com/display/IS500/Kerberos+Security
I am experimenting with WSO2 API Manager and would like to integrate the embedded WSO2 Identity Server with our institutions existing CAS framework. Is it possible to have the WSO2 Identity Server redirect logins to our CAS login page and use the CAS ticket in place of username/password?
This explains how to use WSO2 IS as identity server for WSO2 products such as WSO2 AS, ESB etc.
You can configure your CAS instead of WSO2 IS in the very much similar way.
I am trying to use wso2 ESB server as a PEP, I already have wso2 identity server acting as the PDP and an application hosted on wso2 Application server. I have uploaded policies into identity server and I was wondering if there any tutorials out there that both show and explain how to make this happen. I have tried the blog http://wso2.org/library/articles/2011/08/finegrained-authorization-restful-services-xacml but it has not worked. any direction on how to turn esb into a pep would be appreciated
You can use wso2 esb Entitlement mediator. Have a look at following guide which explains how we can add fine grained authorization to proxy services.
http://docs.wso2.org/wiki/display/IS400/Adding+Fine-grained+Authorization+for+Proxy+Services+in+ESB