Also we have sample tomcat valve[1] and filter[2] written, that shows app can be used JWT token to identify the user and add to session. You should be able to use them as well in samples.
[1] https://github.com/wso2/product-app-manager/tree/master/modules/samples/JWTSecurity/Valve/Tomcat_8 [2] https://github.com/wso2/product-app-manager/tree/master/modules/samples/JWTSecurity/Filter On Tue, Aug 30, 2016 at 11:51 AM, Dinusha Senanayaka <dinu...@wso2.com> wrote: > > > On Tue, Aug 30, 2016 at 11:37 AM, Kishanthan Thangarajah < > kishant...@wso2.com> wrote: > >> AS 6.0.0 is not an OSGi runtime. It's pure tomcat plus WSO2 features >> as tomcat extensions. We could reuse the code here from App Manager. >> > > Ah Ok. You can get the AppM code from here [1]. > [1] https://github.com/wso2/carbon-appmgt/tree/master/ > components/org.wso2.carbon.appmgt.gateway/src/main/java/ > org/wso2/carbon/appmgt/gateway/token > > Regards, > Dinusha. > >> >> @Johann/Sagara, shall we send the user attributes as JWT token to backend >> webapp? >> >> On Tue, Aug 30, 2016 at 11:27 AM, Dinusha Senanayaka <dinu...@wso2.com> >> wrote: >> >>> In App Manager, we process the SAML response and add SAML response >>> assertions as JWT token and send to backend as a header. Shouldn't we try >>> to install AppM features and get the gateway features into AS without >>> redoing the same ? >>> >>> Regards, >>> Dinusha. >>> >>> On Mon, Aug 29, 2016 at 8:50 PM, Kishanthan Thangarajah < >>> kishant...@wso2.com> wrote: >>> >>>> We need to send the user attributes that are returned from SAML >>>> response with the successful authentication, to the webapp using some way. >>>> We discussed whether we could send this as a session attribute or using a >>>> request parameter. >>>> >>>> @Kalpa, let's create a jira for this and add this to change to upcoming >>>> milestone release. >>>> >>>> Thanks, >>>> >>>> -- >>>> *Kishanthan Thangarajah* >>>> Technical Lead, >>>> Platform Technologies Team, >>>> WSO2, Inc. >>>> lean.enterprise.middleware >>>> >>>> Mobile - +94773426635 >>>> Blog - *http://kishanthan.wordpress.com >>>> <http://kishanthan.wordpress.com>* >>>> Twitter - *http://twitter.com/kishanthan >>>> <http://twitter.com/kishanthan>* >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> Dev@wso2.org >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> Dinusha Dilrukshi >>> Associate Technical Lead >>> WSO2 Inc.: http://wso2.com/ >>> Mobile: +94725255071 >>> Blog: http://dinushasblog.blogspot.com/ >>> >> >> >> >> -- >> *Kishanthan Thangarajah* >> Technical Lead, >> Platform Technologies Team, >> WSO2, Inc. >> lean.enterprise.middleware >> >> Mobile - +94773426635 >> Blog - *http://kishanthan.wordpress.com >> <http://kishanthan.wordpress.com>* >> Twitter - *http://twitter.com/kishanthan <http://twitter.com/kishanthan>* >> > > > > -- > Dinusha Dilrukshi > Associate Technical Lead > WSO2 Inc.: http://wso2.com/ > Mobile: +94725255071 > Blog: http://dinushasblog.blogspot.com/ > -- Dinusha Dilrukshi Associate Technical Lead WSO2 Inc.: http://wso2.com/ Mobile: +94725255071 Blog: http://dinushasblog.blogspot.com/
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev