Hi team,
I have tested below scenarios in super tenant and tenant mode both as non
email and email as username.
1.
Account Management
1.
User Self Registration
1.
Self signup with email confirmation
2.
Self signup without email confirmation
3.
reCaptcha validation at self signup
2.
Account Recovery
1.
Username Recovery
2.
Password Recover
-
Notification Based Password Recovery
-
Challenge Question Based Password Recovery
1.
Recover with Secret Questions sequentially
2.
Challenge Question Internationalization
3.
reCaptcha validation at password recovery
-
Email Notification in Password recovery flow
1.
When starting password recovery flow
2.
After successful completion of password recovery
-
Block brute force attacks on password reset
3.
Password Reset
1.
Recovery Email with a link to reset password
2.
Recovery Email with a OTP
3.
Offline OTP
2.
Password History validation
3.
Login Management
1.
reCaptcha for SSO Login
2.
Account Locking at failed attempts and increase lock time-out
exponentially
3.
Resending Email verification code
4.
Email Configuration
1. *Email template internationalization*
5. Federation - Oauth/OIDC
1. SAML to Oauth
2. OIDC to Oauth
3. PassiveSTS to Oauth
4. Claim Mappings
5. JIT Provisioning
6. Outbound Provisioning with JIT
7. Account Association and claims
Those scenarios worked as expected.
[+1] Go ahead and release.
Thanks!
-Ayesha
On Mon, Jan 9, 2017 at 6:53 AM, Kasun Bandara <kbandara...@gmail.com> wrote:
> Hi IS team,
>
> Tested the following on the Identity Server 5.3.0-RC3 pack,
>
>
> - Email Internationalisation Feature (Tenant wise support)
> - Email Templates type addition
> - Email Templates addition
> - Update and Delete Email templates
> - HTML support for email template management (Tenant wise support))
>
> [+] Stable - go ahead and release
>
> Regards.
> Kasun
>
> Kasun Gayan Bandara
> PhD Research Student
> Machine Learning Group
>
> Faculty of Information Technology, Clayton
> Monash University
> 25 Exhibition Walk, Clayton Campus
> Wellington Road
> Clayton VIC 3800
> Australia.
>
> E: herath.band...@monash.edu
> M (+61) 43 491 6476
>
> <https://www.linkedin.com/in/bandarakasun>
>
>
>
> On Mon, Jan 9, 2017 at 6:05 AM, Farasath Ahamed <farasa...@wso2.com>
> wrote:
>
>> Tested the following on the Identity Server 5.3.0-RC3 pack,
>>
>> - Create Service Provider by importing SAML metadata file.
>> - Export Resident IDP metadata.
>> - SAML SSO for apps hosted on Apache2 using mod_auth_mellon with
>> Identity Server.
>> - Verify CSRF protection for dashboard apps.
>> - Verify IDENTITY-5555 <https://wso2.org/jira/browse/IDENTITY-5555>
>> - Verify IDENTITY-5563 <https://wso2.org/jira/browse/IDENTITY-5563>
>> - Recover Password with user locale based challenge questions.
>> - Add User account association between two local user accounts.
>>
>> [+] Stable - go ahead and release
>>
>>
>> Thanks,
>> Farasath Ahamed
>> Software Engineer, WSO2 Inc.; http://wso2.com
>> Mobile: +94777603866
>> Blog: blog.farazath.com
>> Twitter: @farazath619 <https://twitter.com/farazath619>
>> <http://wso2.com/signature>
>>
>>
>>
>> On Fri, Jan 6, 2017 at 10:06 PM, Pulasthi Mahawithana <pulast...@wso2.com
>> > wrote:
>>
>>> Hi All,
>>>
>>> This is the 3rd Release Candidate of WSO2 Identity Server 5.3.0.
>>>
>>> Please download, test the product and vote. Vote will be open for 72
>>> hours or as needed.
>>>
>>> This release fixes the following issues:
>>>
>>> Runtime : https://wso2.org/jira/issues/?filter=13612
>>> Analytics : https://wso2.org/jira/issues/?filter=13614
>>>
>>> Source and distribution
>>>
>>> Run-time : https://github.com/wso2/prod
>>> uct-is/releases/tag/v5.3.0-rc3
>>> Analytics : https://github.com/wso2/anal
>>> ytics-is/releases/tag/v5.3.0-rc3
>>>
>>> Please vote as follows.
>>> [+] Stable - go ahead and release
>>> [-] Broken - do not release (explain why)
>>>
>>> Thanks,
>>> - WSO2 Identity Server Team -
>>>
>>> --
>>> *Pulasthi Mahawithana*
>>> Senior Software Engineer
>>> WSO2 Inc., http://wso2.com/
>>> Mobile: +94-71-5179022 <+94%2071%20517%209022>
>>> Blog: http://blog.pulasthi.org
>>>
>>> <https://wso2.com/signature>
>>>
>>> _______________________________________________
>>> Dev mailing list
>>> d...@wso2.org
>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>
>>>
>>
>> _______________________________________________
>> Architecture mailing list
>> Architecture@wso2.org
>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>>
>>
>
> _______________________________________________
> Architecture mailing list
> Architecture@wso2.org
> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>
>
--
*Ayesha Dissanayaka*
Software Engineer,
WSO2, Inc : http://wso2.com
<http://www.google.com/url?q=http%3A%2F%2Fwso2.com&sa=D&sntz=1&usg=AFQjCNEZvyc0uMD1HhBaEGCBxs6e9fBObg>
20, Palmgrove Avenue, Colombo 3
E-Mail: aye...@wso2.com <ayshsa...@gmail.com>
_______________________________________________
Architecture mailing list
Architecture@wso2.org
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
