On Wed, Apr 19, 2017 at 1:45 PM, Bhathiya Jayasekara <bhath...@wso2.com> wrote:
> Hi Darshana, > > Please find my opinions inline. > > On Wed, Apr 19, 2017 at 11:19 AM, Darshana Gunawardana <darsh...@wso2.com> > wrote: > >> Hi all, >> >> Please find few questions on the requirement and deployment below. >> >> 1. Does APIM really need the self signup UI in the store? >> >> APIM Store is usually exposed to the external app developers too. > Therefore self signup feature is required. > >> >> 1. Even we assume it need the self signup capability, as per the >> above approach, store application (UI) consume self signup APIs in the >> server. Are we expected to have this APIs on the KM server or the AM-Core >> server? >> >> We will be having the service in APIM-core, and it will call IDP > internally. > >> >> 1. If these APIs expected to have in the KM server, since we using a >> proprietary APIs to register users, it would be an issue when APIM try to >> integrate with an external KM, isn't it? What is the solution we in this >> case? >> >> In APIM core, we provide an extension point (i.e. IDP interface) so that > IDP calls can be implemented according to the IDP that is used. The default > one will be calling IS. > > However, if we use SCIM to write the default implementation, external KMs > who support SCIM won't be needing to write that again. There we have an > advantage with SCIM over the proprietary API. > Hi Bhathiya, Just to clarify; These registered users are not the actual end end users & just application developers. Do we really need to store these users in KM ? Can't they be stored in APIM user store? If we need them in KM user store, what is the exact reason ? Thanks, Asela. > > Thanks, > Bhathiya > > Thanks, >> >> On Tue, Apr 18, 2017 at 6:37 PM, Bhathiya Jayasekara <bhath...@wso2.com> >> wrote: >> >>> Thanks for the information, Isura. I'll use that. >>> >>> Thanks, >>> Bhathiya >>> >>> On Tue, Apr 18, 2017 at 6:33 PM, Isura Karunaratne <is...@wso2.com> >>> wrote: >>> >>>> Hi Bhathiya, >>>> >>>> You better to go with new REST API service [1], because it supports >>>> two-step verification. That means when user self-registered, an email will >>>> be sent to users email address, then user cannot login to the system until >>>> confirming the email. Also, we can resend the confirmation code >>>> functionality also available in new REST APIs >>>> >>>> Thanks >>>> Isura. >>>> >>>> [1] https://docs.wso2.com/display/IS530/apidocs/self-registr >>>> ation/#!/operations#SelfRegister#mePost >>>> >>>> >>>> >>>> On Tue, Apr 18, 2017 at 2:09 AM, Bhathiya Jayasekara <bhath...@wso2.com >>>> > wrote: >>>> >>>>> Hi all, >>>>> >>>>> In C4, APIM was using identity server's "UserRegistrationAdminService" >>>>> SOAP service to register new users. But APIM itself managed workflows >>>>> related to self-signup. >>>>> >>>>> But since IS has workflow features now, in C5 we are planning to reuse >>>>> complete user signup feature of IS in APIM too. >>>>> >>>>> Now we need a REST service to add/register users in IS. I was planning >>>>> to use SCIM APIs for this purpose. But I got to know there is a >>>>> separate REST service[1] to register users. >>>>> >>>>> *@IS team:* What is your recommendation here? What are the advantages >>>>> we get from one over the other? >>>>> >>>>> Appreciate your responses. >>>>> >>>>> [1] https://docs.wso2.com/display/IS530/apidocs/self-registr >>>>> ation/#!/operations#SelfRegister#mePost >>>>> >>>>> Thanks, >>>>> -- >>>>> *Bhathiya Jayasekara* >>>>> *Associate Technical Lead,* >>>>> *WSO2 inc., http://wso2.com <http://wso2.com>* >>>>> >>>>> *Phone: +94715478185 <+94%2071%20547%208185>* >>>>> *LinkedIn: http://www.linkedin.com/in/bhathiyaj >>>>> <http://www.linkedin.com/in/bhathiyaj>* >>>>> *Twitter: https://twitter.com/bhathiyax >>>>> <https://twitter.com/bhathiyax>* >>>>> *Blog: http://movingaheadblog.blogspot.com >>>>> <http://movingaheadblog.blogspot.com/>* >>>>> >>>> >>>> >>>> >>>> -- >>>> >>>> *Isura Dilhara Karunaratne* >>>> Senior Software Engineer | WSO2 >>>> Email: is...@wso2.com >>>> Mob : +94 772 254 810 <077%20225%204810> >>>> Blog : http://isurad.blogspot.com/ >>>> >>>> >>>> >>>> >>> >>> >>> -- >>> *Bhathiya Jayasekara* >>> *Associate Technical Lead,* >>> *WSO2 inc., http://wso2.com <http://wso2.com>* >>> >>> *Phone: +94715478185 <+94%2071%20547%208185>* >>> *LinkedIn: http://www.linkedin.com/in/bhathiyaj >>> <http://www.linkedin.com/in/bhathiyaj>* >>> *Twitter: https://twitter.com/bhathiyax <https://twitter.com/bhathiyax>* >>> *Blog: http://movingaheadblog.blogspot.com >>> <http://movingaheadblog.blogspot.com/>* >>> >> >> >> >> -- >> Regards, >> >> >> *Darshana Gunawardana*Associate Technical Lead >> WSO2 Inc.; http://wso2.com >> >> *E-mail: darsh...@wso2.com <darsh...@wso2.com>* >> *Mobile: +94718566859 <071%20856%206859>*Lean . Enterprise . Middleware >> > > > > -- > *Bhathiya Jayasekara* > *Associate Technical Lead,* > *WSO2 inc., http://wso2.com <http://wso2.com>* > > *Phone: +94715478185 <071%20547%208185>* > *LinkedIn: http://www.linkedin.com/in/bhathiyaj > <http://www.linkedin.com/in/bhathiyaj>* > *Twitter: https://twitter.com/bhathiyax <https://twitter.com/bhathiyax>* > *Blog: http://movingaheadblog.blogspot.com > <http://movingaheadblog.blogspot.com/>* > > _______________________________________________ > Architecture mailing list > Architecture@wso2.org > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- Thanks & Regards, Asela ATL Mobile : +94 777 625 933 +358 449 228 979 http://soasecurity.org/ http://xacmlinfo.org/
_______________________________________________ Architecture mailing list Architecture@wso2.org https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
