On Thu, Oct 19, 2017 at 5:21 PM, Niveathika Rajendran <niveath...@wso2.com> wrote:
> Hi all, > > The following points outline the integration of Stream Processor with an > Identity Provider. Identity Provider Client interface will act as the > mediator between SP components and Identity Provider. The points are > divided into to two main parts based on the authentication mechanism. > > *Basic Authentication (Only for evaluation of the product)* > > Why this is only for evaluation of the product? We have to support Basic Authentication in production too. The idea is to support this by converting the Basic Authentication as Password GrantType and validating the client. I think you have missed that part. Can you elobarate on that too. 1. User store is maintained in the file system. > 2. Session management is maintained by the Identity Provider Client > interface by maintaining the users login along with a randomly generated > session id and expiry time. > > We have to have a filebased user store by default (thats for the evaluation of the product) and that should work for both Basic Authentication and OAuth2 Authentication. Can you udpate the mail with the correct information. > > *OAuth2 Authentication* > > 1. Use the Dynamic Client Registration endpoint in the IdP to create > service provider dynamically. > 1. Through SP dashboard UI user can requests access tokens through either > password grant type or authorization code grant type. > 2. Session management is maintained through the tokens returned by the IdP. > 3. Users can also access the back end APIs with either username & > password or access token. If user presents the username & password the > interceptor will redirect to Identity Provider Client's token requesting > function. Thus essentially the user requesting token from the IdP. If user > accesses with token then the token will be validated through introspection > end point of the IdP. > > > > > More information on the solution can be found at [1] > > > [1] https://docs.google.com/a/wso2.com/document/d/1vFP_GZcuLzJrk > RDV3mCfuSDkwC8eKClmp4zt-lUs1Ro/edit?usp=sharing > > -- > Best Regards, > *Niveathika Rajendran,* > *Software Engineer.* > *Mobile : +94 077 903 7536 <+94%2077%20903%207536>* > > -- *S. Suhothayan* Associate Director / Architect *WSO2 Inc. *http://wso2.com * <http://wso2.com/>* lean . enterprise . middleware *cell: (+94) 779 756 757 | blog: http://suhothayan.blogspot.com/ <http://suhothayan.blogspot.com/>twitter: http://twitter.com/suhothayan <http://twitter.com/suhothayan> | linked-in: http://lk.linkedin.com/in/suhothayan <http://lk.linkedin.com/in/suhothayan>*
_______________________________________________ Architecture mailing list Architecture@wso2.org https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
