Hi All Since we have most of the things happens in the SSO authendicator in sso host object, isn't it the right thing to do what SAML SSO Authenticator have done after authenticated. All of the authenticators after authentication succeeded they calls *CarbonAuthenticationUtil.onSuccessAdminLogin *method. So my opinion is to use the same procedure here too. If we do it in acs level every jaggery app has to do this in there authentication level which duplicates same code which is not the right way for me.
WDYT? Thanks & Regards Danushka Fernando Software Engineer WSO2 inc. http://wso2.com/ Mobile : +94716332729 On Sat, Oct 19, 2013 at 8:11 PM, Shariq Muhammed <sha...@wso2.com> wrote: > Hi folks, > > We are still experiencing the same registry loading issue in AF when the > IDP is an external IS server. Because of this users login to AF appmgt app > fails because signature verification fails. Can someone from AF teamplease > look into this ?! > > > On Wed, Oct 9, 2013 at 7:32 PM, Shariq Muhammed <sha...@wso2.com> wrote: > >> On Wed, Oct 9, 2013 at 6:33 PM, Nuwan Bandara <nu...@wso2.com> wrote: >> >>> >>> >>> >>> On Wed, Oct 9, 2013 at 2:49 PM, Shariq Muhammed <sha...@wso2.com> wrote: >>> >>>> On Tue, Oct 8, 2013 at 11:03 PM, Amila De Silva <ami...@wso2.com>wrote: >>>> >>>>> Hi, >>>>> Can't we take out the registry loading out of the sso hostobject and >>>>> do it from the acs.jag ? The thing is when populating the >>>>> store/publisher for a tenant we somehow have to load the tenant registry >>>>> and doing it in the sso hostobject would only incur an additional >>>>> cost. When loading tenant registries in store/publisher, we keep track of >>>>> which registries have been already loaded so when a different user from >>>>> the >>>>> same tenant logs in, we can avoid loading it for a second time. >>>>> >>>> >>>> So basically in API-M store / publisher also we load the tenant >>>> registry and that's how it works. Wouldn't it be better to load the tenant >>>> registry at the HO level, of course keeping track if the registry has been >>>> loaded already ... >>>> >>> >>> Guys -1 on adding anything more to HostObject, we need to deprecate it >>> and move to the new way of doing it. You can load the user related anything >>> at the ACS including the registry. >>> >> >> +1! Lets load the tenant registry in the acs page then, Ranga et al, can >> you please make the required modifications ... :) >> >>> >>> >>>> >>>>> AmilaD >>>>> >>>>> >>>>> On Tue, Oct 8, 2013 at 7:35 PM, Sumedha Rubasinghe >>>>> <sume...@wso2.com>wrote: >>>>> >>>>>> How this is working for two web apps (store , publisher) in API >>>>>> Manager? >>>>>> >>>>>> >>>>>> On Tue, Oct 8, 2013 at 5:57 PM, Ranga Siriwardena <ra...@wso2.com>wrote: >>>>>> >>>>>>> Hi devs, >>>>>>> >>>>>>> We are using sso hostobject for appfactory sso purpose. We >>>>>>> encountered $Subject when login as a tenant user. Following are the >>>>>>> issues >>>>>>> encountered. >>>>>>> >>>>>>> - tenant registry is not loaded during the signature validation >>>>>>> phase >>>>>>> - decode method is not compatible with encode mechanism >>>>>>> >>>>>>> We were able to get rid of this issue by loading tenant registry >>>>>>> inside hostobject (here we load tenant registry before signature >>>>>>> validation) and fixing decode method. Hope this issue will effectanyone >>>>>>> who use >>>>>>> sso hostobject hence we need to commit this fix to current branch. >>>>>>> Could some one from IS team please review and commit this fix in[1]. >>>>>>> Please let us know if there is better ways to get rid of these >>>>>>> issues as well. >>>>>>> >>>>>>> [1] https://wso2.org/jira/browse/IDENTITY-1858 >>>>>>> >>>>>>> Thank You. >>>>>>> Ranga. >>>>>>> -- >>>>>>> Ranga Siriwardena >>>>>>> Software Engineer >>>>>>> WSO2 Inc. >>>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> /sumedha >>>>>> m: +94 773017743 >>>>>> b : bit.ly/sumedha >>>>>> >>>>>> _______________________________________________ >>>>>> Dev mailing list >>>>>> Dev@wso2.org >>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>> >>>>>> >>>>> >>>>> >>>>> -- >>>>> *Amila De Silva* >>>>> * >>>>> * >>>>> *Software Engineer* >>>>> WSO2 Inc.* >>>>> * >>>>> mobile :(+94) 775119302 >>>>> >>>>> >>>>> _______________________________________________ >>>>> Dev mailing list >>>>> Dev@wso2.org >>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>> >>>>> >>>> >>>> >>>> -- >>>> Thanks, >>>> M. S. M. Shariq. >>>> Senior Software Engineer >>>> Phone: +94 777 202 225 >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> Dev@wso2.org >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> *Thanks & Regards, >>> >>> Nuwan Bandara >>> Technical Lead; **WSO2 Inc. * >>> *lean . enterprise . middleware | http://wso2.com * >>> *blog : http://nuwanbando.com; email: nu...@wso2.com; phone: +94 11 214 >>> 5345 >>> * >>> <http://www.nuwanbando.com/> >>> >> >> >> >> -- >> Thanks, >> M. S. M. Shariq. >> Senior Software Engineer >> Phone: +94 777 202 225 >> > > > > -- > Thanks, > M. S. M. Shariq. > Senior Software Engineer > Phone: +94 777 202 225 >
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
