+ dev On Sat, Feb 23, 2019 at 4:19 PM Reza Ameri <[email protected]> wrote:
> Hi > Dear All, > > We are using WSO2 IS as the Identity Bus for our solutions. We use WSO2 > ESB and EI to implement our Integration and use OAuth mediator to connect > an API from EI to IS. > Everything works fine in the EI, but we want to create an XACML policy to > do two kinds of restrictions at the same time. First, authorize the user > against the URI which can be hardcoded in the XACML or saved as a property > in user claims. Secondly, authorize the user against the origin IP of the > user, I mean imagine that every user saves its IP in its claims, then we > check the invoker IP to match the user IP. > We asked this question in StackOverflow [1] and [2]. I think our question > was not clear enough. > It is really appreciated to hearing from you. > > Thank you, > Reza > > > [1] > https://stackoverflow.com/questions/54674726/securing-rest-api-with-wso2-is-and-xacml-policy > [2] > https://stackoverflow.com/questions/54752236/rest-api-with-wso2-is-and-xacml-policy > > > > > *Reza Ameri* > Software Architect > https://www.linkedin.com/in/rezaameri/ > -- *M.Nirothipan* | Senior Software Engineer | WSO2 Inc. (m) +94772172692 | (e) [email protected] [image: http://wso2.com/signature] <http://wso2.com/signature>
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
