I want to delegate permissions of one user to other user in WSO2 IS v5.0.0. Both users are part my WSO2 v5.0.0 IS. Can any one help me with detailed steps. I read much about oauth, but can't run and even configured it !.
Thanks in advance
Related
I am new to this software. From what I know, the WSO2 Enterprise Integrator is come with Enterprise Service Bus inside it. But the Identity Server (IS) is not bundled with the EI.
For my current and new project, we going to be used both of it inside the architecture. Please see below diagram for more information.
Part of my project architecture
Based on the diagram, when the user is using the portal to login. The EI is serve as the middle-ware between the portal and the IS to connect to the LDAP.
Looking at the documentation, there is way to connect from IS to the other product but not vice-versa.
My question right here is how to allow the ESB to communicate to the IS and return back the message/request to the Portal.
Thank you.
Yoy did not describe your use case what do you want to achieve so I will assume you want to authenticate the portal user or manage users.
WSO2IS (and effectively any wso2 product) exposes admin services, some are common, some specific to the product. The services require basic authentication.
please see https://medium.com/#maheeka/wso2-admin-services-c61b7d856272
Another service to authenticate a user is a token service with password grant (that may be more appropriate to authenticate users and authorize requested scopes)
Just a note:
If you want to use the whole setup only only to authenticate users, then IMHO you rather may use OAuth or SAML with the IS, not passing passwords in ESB
I've forgotten my WSO2 ESB Web User interface password.
How can i reset my password?
Thanks in advance
I'm assuming you're talking about the carbon console. If so you should be able to see and/or change the password under "/repository/conf/user-mgt.xml"
https://docs.wso2.com/display/ESB500/Configuring+user-mgt.xml
Edit
Ok seems as the above method only reveals the admin password at initial start up. You should however be able to change the password with this method, it has a link in it linking to the official wso2 documentation regarding the matter.
I want to protect non-browser based web service with saml using wso2is. please provide me some links or tutorial to do this. So far I google about this but I didn't get idea how to do this. please help. thnx
To protect non-Browser based web services with SAML we need the ECP Profiles. But in the current implementation of the WSO2 Identity server, it doesn't support ECP profiles. It will be implemented in future releases.
I need to create a read-only user can not modify APIs, Sequences, Templates and Log configuration.
Is it possible through User Management in WSO2 ESB 4.8.1?
Currently WSO2 Carbon user management framework does not provide users with a read only permission for source view. I have attached a screenshot that exhibit the permission set that need for ESB mediation developer, Since "mediation" permission does not have any further fine grained permission set, your request can not be fulfilled. This is a improvement to be done.
Is there a way to inactivate a user in WSO2 identity server 5.0.0?
Inactivating should mean that the user cannot login to other applications which are SSO integrated into the IS.
Removing roles/permissions seems not to do the trick.
WSO2 IS supports account lock feature to cater your requirement from IS 4.5.0 onwards. Please follow this document.
Account disable functionality is not yet implemented and we have already reported a jira to track it in future releases.