where is the UI for selecting the sequence for in/out/fault in publisher app.
In Version 1.7 is a checkbox in the "Manage"-Tab[1], but in the current version 1.10 this checkbox is missing.
I can't find a description in the current documentation[2], how can I configure sequences for single APIs? Or must I edit the API via carbon-registry?
Regards
Marty
[1] https://docs.wso2.com/display/AM170/Managing+APIs
[2] https://docs.wso2.com/display/AM1100/Key+Concepts#KeyConcepts-Sequences
I found the configuration option. It is in the "Implement"-Tab.
See "Message Mediation Policies" -> https://docs.wso2.com/display/AM1100/Change+the+Default+Mediation+Flow+of+API+Requests
We have moved this to Implementation Tab inside "Enable Message Mediation" and, with API Manager 1.10, you can upload your own Message Mediation Policies through Publisher UI.
For more information, check Adding Mediation Extensions
Related
When I was trying "JSON/XML Threat Protection for API Gateway" in WSO2 APIM 3.1.0, by adding a mediation policy. It isn't considering the custom policy that I've written, it's taking the default values which are 100.
Anything more I should be adding, please suggest!
Once a new mediation sequence is implemented, it needs to be upload and select as a mediation sequence in the "Message Mediation" section. Once selected need to republish to apply the changes.
You can confirm this by checking the generated sequences file in the <AM_HOME>/repository/deployment/server/synapse-configs/default/sequences. The file format will be <provider>--<API-Name>_v<Version>--<Direction>.xml
Our ws02 metadata that is available via the url (https://ourserver:9443/identity/metadata/saml2) has a "validUntil" date on it that is only a few hours long. This causes some issues with Service providers that only refresh the metadata url periodically. Is there a way to change the validUntil time on the metadata in the url so it can be longer?
WSO2 Identity Server 5.3.0
WSO2 IS 5.3.0 does not support configuring SAML metadata validity time out of the box. But this feature has been added through a WUM update. You can find the public PRs for this feature in [1] and [2]. If you don't have WUM you can get the this fix by building the product from the public branch[3].
[1] https://github.com/wso2/carbon-identity-framework/pull/1980
[2] https://github.com/wso2-extensions/identity-metadata-saml2/pull/29
[3] https://github.com/wso2/product-is
I want to upgrade my WSO2 identity server from 5.0 to 5.3 but I don't know how to add custom authentication in local and outbound authentication configuration in service provider, for example, I need to add level of assurance(LOA) for my mobile connect project
Your requirement has two aspects.
Add custom authentication.
LoA
1. Custom Authentication
For custom Authentication, you can create your own local or federated authenticators. The documentation are available at [1] [2]
2. LoA
This will be available on one of post IS 5.4.0 releases. This will be handled with ACR ("Authentication Context Class Reference")
[1] https://docs.wso2.com/display/IS530/Writing+a+Custom+Local+Authenticator
[2] http://wso2.com/library/articles/2017/04/writing-a-custom-inbound-authenticator-for-wso2-identity-server/
Further discussion on Dynamic Authentication flow changes can be found on WSO2 architecture thread.
Conditional Authentication Support on WSO2 Identity Server
I'm following below links for publishing WSO2 statistics. But i'm getting "405 method not allowed" when i login to https://localhost:9443/admin-dashboard. So i'm unable to enable the statistics.
I'm using ws02 API 2.0 and ws02API analytics 2.0.
Could anyone help me on this.
Thanks,
Santosh
#santosh.a
I assume you have configured apim_wso2metrics_db datasource as common database for wso2am and wso2am-analytics. Next,Follow documentation to configure wso2am-analytics with wso2am-api-manager. Configuring APIM Analytics. Most important Step 2: Edit <APIM_HOME>/repository/conf/api-manager.xml and enable analytics and check the DASServerURL and DASRestApiURL, make sure it is pointing to analytics server IP.
Once configuration is enabled. you will be able to see analytics on API Store and API Publisher under statistics sections. You can also go to dashboard by https://<wso2am-analytics>/portal
I've created a simple API and I'm trying to publish it using WSO2's API Publisher (aka API Cloud). I've gone through all the steps, but it seems to require an Authorization header to access my endpoint. In older documentation, it says that I can change the "Auth Type" at the resource level.
https://docs.wso2.com/display/AM160/API+Resources
However, this option doesn't seem to be there in the current version. I tried to make it so the Authorization header was not required. Unfortunately, I still get the following error:
<ams:fault xmlns:ams="http://wso2.org/apimanager/security">
<ams:code>900902</ams:code>
<ams:message>Missing Credentials</ams:message>
<ams:description>Required OAuth credentials not provided</ams:description>
</ams:fault>
Is it possible to disable authentication for my API? I don't need it at this point in my project.
The document you have referred is from APIM 1.6. From APIM 1.7, the APIM team changed the API creation process to a 3-step process. It involves API Design, Implement and Manage. I think you have experienced this by now. In the Manage section, at the very bottom, it lists down the available resources of the API, their auth type, allowed tier and the scope allowed.
Default auth type is application & application user. If you click on that, you will get a drop down where you will see "None" as an option. If you set the auth type as none, you will be able to invoke the API without providing the OAuth token.
See the following screenshot where I have selected different Auth types when creating an API.
Open the configuration related to your API in ${AM_HOME}/repository/deployment/server/synapse-configs/default/api/ and remove the following part.
<handler class="org.wso2.carbon.apimgt.gateway.handlers.security.APIAuthenticationHandler"/>