Deploying a custom Password Policy file for WSO2 Identity Server - wso2

The documentation on how to create a custom password policy (https://docs.wso2.org/display/IS460/Password+Policies) is lacking details about how to deploy the custom password policy.
Does anyone here have any information about how to deploy the custom code?

As #AdrianMitev mentioned, you have to write java class to enforce new custom Password Policy.
Create new class as mentioned in the doc.
Build a jar
copy it into <IS_HOME>/repository/components/libs/ folder.
Then update the configuration file as mentioned in the doc.
HTH,
DarRay

Related

Wso2is admin REST API Postman collection is available to public

I am trying to create a new interface for wso2is for my specific requirement. I only need some specific functionalities (add user, add roles etc) from wso2, I go through several documentation in wso2 website and find:
this document
this post
but never got a complete documentation.
Is it possible to get the postman collections for the same?
The documentation you have referred to is relevant to the admin services for user and role management. They are implemented using SOAP. But since you have some basic requirements as add user delete user add roles you can use the SCIM2 REST API's[1][2]
[1].https://docs.wso2.com/display/IS570/Using+the+SCIM+2.0+REST+APIs
[2].https://medium.com/#vindulajayawardana/scim-2-0-api-for-wso2-identity-server-5-3-0-fc5dcaad9e44

Secondary Custom UserStore using JDBCUserStoreManagerin WSO IS 5.9

Need to create a secondary custom UserStore using JDBCUserStoreManager, I have a usertable with username and password as coloumns,
I need to configure the datasource , and then customer Userstore Manager class and using the username and password from the usertable I should be able to login to WSO2 IS 5.9
Thanks,
Subhash
You can follow this doc to write a custom userstore manager
You have to extend JDBCUserStoreManager class and overide the
methods.
Then can build the source code and deploy the artifact
into dropins folder as mentioned in thedoc.
When you are configuring the secondary userstore manager, you can point to the custom userstore manager. Please folow these two docs (doc1, doc2) to configure secondary userstores

Hide source code from public view in wso2

Hi I am using WSO2 integrator for my integration projects. I would like to know that, is there a way to hide the source codes deployed in WSO2 as car file.That is, the user should not be allowed to edit the services either in source view or in design view. Also please share the thoughts of customize wso2 itself for the same purpose.
It is possible to create users and assign different permission for users in ESB. You can see in the following documentation how to add users and configure roles:
https://docs.wso2.com/display/ADMIN44x/Configuring+Roles
To add a user On the Main tab in the management console, click Add under Users and Roles and follow along.
The following will help to set permissions:
https://docs.wso2.com/display/ADMIN44x/Role-based+Permissions

WSO2 IS cannot add new profile from User Profile Management

When I go to "My Identity -> My Profiles", it does not give me the option to Add New Profile (as seen on the documentation for User Profile Management), but I can only edit the default profile.
I am using an external MySQL server as the JDBC user store, and creation and editing of users works fine.
I did not find any parameter in the xml files to enable this multiple profile feature. How should I proceed?
Thanks.
Yes. I also find the same. Adding multiple profile for user has been removed from UI. But with JDBC user store, I guess, we can add this using the web service API. Following is the API
https://{ip}:{port}/services/UserProfileMgtService?wsdl

package domain, role and user on sitecore

I am new to sitecore.
I have a question regarding packaging Domain and Roles on sitecore (we are using sitecore 6.3.1).
I am packaging content from our dev box to stage and I would like to transfer the Domain, Roles and user created on dev to stage.
The package designer shows a button called 'Security Accounts'. I added the specific user \ who belong to the specific domain and role.
On installing the package to stage site, it throws an error 'blah domain not found, cannot create user'.
So the question is, do i have to create a domain manually on the stage server before I install the user? or is there a way where I can copy the domain and roles to create the user?
Help much appreciated.
I have discovered that the domains are stored in /App_Config/Security/Domains.config and you can migrate between installations simply by copying or editing this file.
Or you can create the domains manually via the Security Domain tool.
Either way the domain must exist before you can install a package with users or roles.
If your target solution doesn't have the domain the user lives in, you'll have to create it manually. However, the roles can be transferred via package the same way as users. If the user A is in role B, and you don't add role B to the package, there should not be any error - simply the user A won't be a member of the role B on target environment.
I would think the answer Yan comes with would work with domains.
But you might need to have the Domain(s) in a package which you install first, or have it as the first "part" of your package, so it gets installed first.