I have installed and run wso2 private paas.I want to add new claim dialects but I am not able to find the option of adding claim management in Private PaaS console.
Any pointers for configuring claims for Private PaaS will be greatly helpful.
Thanks.
You might need to use WSO2 Identity Server (IS) for this. WSO2 Private PaaS does not include all IS features for identity management. Configure SSO for WSO2 Private PaaS using WSO2 IS, and do claim management in WSO2 IS.
Please note that WSO2 has discontinued WSO2 Private PaaS solution and the new PaaS strategy is explained at the below link:
http://wso2.com/cloud/paas/
Related
How do I configure Apache NiFi to use SSO in wso2 IS? I already have a password authentication enabled independently for NiFi. Now I am trying to integrate WSO2 IS for SSO. Couldn't find much help in the help pages.
You can use the following guide to create a OIDC servive provider in IS for Nifi. https://is.docs.wso2.com/en/latest/guides/login/sso-for-oidc/
I was able to find a resource for Nifi which integrates with Google through OIDC. https://bryanbende.com/development/2017/10/03/apache-nifi-openid-connect
You can use both resources to configure Nifi to use SSO with WSO2 IS.
Can WSO2 API Manager be used with a separate Identity Server as IdP, without sharing the database? All documentation and tutorials point to a special version of IS and sharing the database, and I'd like to avoid that.
You can configure WSO2 API Manager with an external IDP without using WSO2 IS. I think this blog will be helpful for you. In this blog, Keycloak has been used as the federated IDP for SSO.
Thanks.
Yes, you can configure IS as federated Identity Provider. This blog has steps to configure WSO2 IS as federated IdP for API Manager.
I found a white paper the wso2 soa security gateway solution that builds a security gateway for SOA.
and in WSO2 API Manager Home page it says that:
It leverages proven, production-ready integration, security, and
governance components from the WSO2 Enterprise Service Bus, WSO2
Identity Server, and WSO2 Governance Registry. In addition, it
leverages the WSO2 Business Activity Monitor for Big Data analytics,
giving you instant insight into APIs behavior.
my question is: Does WSO2 API Manager do every thing mentioned in whitepaper document? if yes why the whitepaper is written? can we use WSO2 API Manager as an XML Gateway?
Given white paper has been published in 2011 and WSO2 API manger is resealed later 2012 and it is improving with the industry standards. All most all the aspects were covered in latest WSO2 API manger (v 1.7).
You can make use of WSO2 API manger or WSO2 ESB for XML Gateway.
I am configuring the Embedded Auto-Scaler of WSO2 ELB following the link "http://docs.wso2.org/wiki/display/ELB203/Configuring+the+Embedded+Auto-Scaler", It only define IaaS Provider of EC2 and openstack in /repository/conf/cloud-controller.xml, Unfortunately, I have to use the IaaS Provider of cloudstack.
Does anyone know how to configure IaaS Provider of cloudstack for Embedded Auto-Scaler of WSO2 ELB.
I will appreciate if you can tell me how to configure the following files:
/repository/conf/cloud-controller.xml
The Cartridge XML file in /repository/deployment/server/cartridges/ folder
The Service XML file in /repository/deployment/server/services/ folder
Thank you in advance.
As you mentioned, WSO2 ELB supports EC2 and OpenStack. However you can configure any IaaS supported by jclouds by writing a custom implementation.
WSO2 ELB is also used in WSO2 Stratos 2.0 and you can find more information at Wiki Docs for Stratos: http://docs.wso2.org/wiki/display/Stratos200/WSO2+Stratos+Documentation
You can find more information about providing support for a new IaaS provider from following link.
http://docs.wso2.org/wiki/display/Stratos200/Providing+Support+for+a+New+IaaS+Provider
/repository/conf/cloud-controller.xml
Refer http://docs.wso2.org/wiki/display/Stratos200/Cloud+Controller+Configuration+Files
You can configure your IaaS provider here.
The Cartridge XML file in /repository/deployment/server/cartridges/ folder
Refer http://docs.wso2.org/wiki/display/Stratos200/Sample+Cartridge+XML+Files for a sample. This is where you define the image id for your IaaS provider.
The Service XML file in /repository/deployment/server/services/ folder
Refer http://docs.wso2.org/wiki/display/Stratos200/Sample+Service+XML+Files for a sample. Service XML defines a service cluster.
Reading about Stratos Architecture might help to understand the context regarding all the files above.
Please subscribe to WSO2 mailing lists, if you have not subscribed already.
Just wanted to understand if CF provides any support for SSO applications? If yes then how?
One of the use cases supported by the UAA is SSO. From the CF.org blog:
Because it is centralized, the UAA can provide a Single Sign On (SSO) service for applications in the Cloud Foundry platform. The cloudfoundry.com platform has several UI components and where they need to be secure they delegate to the UAA for authentication. Examples are the support site and the Micro Cloud Foundry site. (There are no other components in the core Cloud Foundry open source platform that have a UI, so it’s not really necessary to have an SSO feature until you grow the platform beyond the core use cases.)
The UI components that need SSO use the /userinfo endpoint in the UAA, which is just a regular OAuth2 protected resource (an example of the UAA acting as a Resource Server).