Hi All, Tested the below scenarios on MySQL.
- Create an OAuth app using DCR - Get OAuth App information using DCR - Revoke the app - Regenerate the client_secret - Authorization Code flow without client secret (public client) - OIDC custom claims - OIDC role claim with role mappings - User Info calls - Token Revocations The flows work as expected and no blocking issues found. [+] Stable - go ahead and release On Thu, Oct 3, 2019 at 11:56 AM Nilasini Thirunavukkarasu <[email protected]> wrote: > Hi All, > > Tested the following flows and working as expected. > *DB type:- db2* > > - Obtained access tokens using > - authorization code grant type > - password grant type > - refresh token grant type > - implicit grant type > - client-credential grant type > > > - Access token revocation > - Userinfo invocation > - SCIM2 operation > - User creation > - Patch > - PUT > -Search > -Get > -Delete > > No blocker issue found +1 Stable - go ahead and release > > Thanks, > Nila. > > On Thu, Oct 3, 2019 at 11:15 AM Sathya Bandara <[email protected]> wrote: > >> Hi All, >> >> Tested following flows and working as expected. >> >> IDP Management >> - add/update/delete/disable IDPs >> - configure multiple certificates per IDP >> >> SSO with SAML >> SAML to SAML federation >> Export and import SAML metadata >> JIT Provisioning >> >> Workflow management >> - add/delete/update workflow definitions >> - add/delete/disable workflow engagements >> - user approval tasks with workflows >> >> Mutual TLS for Oauth client authentication >> >> [+] Stable - go ahead and release >> >> Thanks, >> Sathya >> >> On Thu, Oct 3, 2019 at 10:19 AM Hasanthi Purnima Dissanayake < >> [email protected]> wrote: >> >>> Hi All, >>> >>> Tested following flows and working as expected. >>> >>> - Obtained access tokens using the following grant types. >>> >>> - authorization code grant type >>> - password grant type >>> - implicit grant type >>> - client-credential grant type >>> >>> - Access token revocation >>> - JWKS endpoint >>> >>> [+] Stable - go ahead and release >>> >>> Thanks, >>> Hasanthi >>> >>> On Thu, Oct 3, 2019 at 9:44 AM Wijith Bandara <[email protected]> wrote: >>> >>>> Hi all >>>> >>>> Verified and validated below listed features are working as expected. >>>> >>>> QSG >>>> - Single-Sign-On with SAML2 >>>> - Single-Sign-On with OIDC >>>> - Multi-Factor Authentication >>>> - Google as a Federated Authenticator >>>> - Self-Signup >>>> - Creating a workflow >>>> >>>> Multi Options Authentication with local authenticators (basic, >>>> X509Certificate) >>>> Multi Options Authentication with federated authenticators (SAML2 Web >>>> SSO, Google, Yahoo) >>>> Multi Options Authentication with federated authenticators >>>> (OAuth2/OpenID Connect, Facebook, Twitter) >>>> Multi-Factor Authentication with federated authenticators(SAML2 Web >>>> SSO, Google, Yahoo, basic) >>>> >>>> No blocker issue found +1 to proceed >>>> >>>> Thanks, >>>> wijith >>>> >>>> On Thu, Oct 3, 2019 at 9:16 AM Achini Jayasena <[email protected]> >>>> wrote: >>>> >>>>> Hi All, >>>>> >>>>> Tested and verified with performance test and long running test. Test >>>>> result match with the expectations. >>>>> >>>>> *Performance test* >>>>> >>>>> Summary*: *Performance has been improved comparing to the product >>>>> version 5.8 >>>>> >>>>> Deployment >>>>> >>>>> - OS: Ubuntu >>>>> - DB: Mysql >>>>> - Heap: 4G/2G >>>>> - CPU cores: 4 >>>>> - Concurrent users: 50, 100, 150, 300, 500 >>>>> >>>>> Scenarios: >>>>> >>>>> - Authenticate_Super_Tenant_User >>>>> - OAuth_AuthCode_Redirect_WithConsent >>>>> - OAuth_Client_Credentials_Grant >>>>> - OAuth_Implicit_Redirect_WithConsent >>>>> - OAuth_Password_Grant >>>>> - OIDC_AuthCode_Redirect_WithConsent >>>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent >>>>> - OIDC_Implicit_Redirect_WithConsent >>>>> - OIDC_Password_Grant >>>>> - SAML2_SSO_Redirect_Binding >>>>> - Challenge questions by super tenant users >>>>> - Refresh token refresh grant - Renewal false >>>>> >>>>> *Long running test* >>>>> >>>>> Summery*: *No issue reported. >>>>> >>>>> Deployment : >>>>> >>>>> - IS node >>>>> - Instance type: c5.xlarge >>>>> - vCPU:4 >>>>> - RAM: 8GB >>>>> - Heap: 2G allocated for IS >>>>> >>>>> >>>>> - RDS as the MySQL DB >>>>> - Mysql engine version : 5.7.22 >>>>> - vCPU: 4 >>>>> - Instance class : db.m4.xlarge >>>>> - RAM: 16 GB >>>>> - Storage: 100 GiB >>>>> - Executing test scenarios: >>>>> - Authenticate_Super_Tenant_User >>>>> - OAuth_AuthCode_Redirect_WithConsent >>>>> - OAuth_Password_Grant >>>>> - OIDC_AuthCode_Redirect_WithConsent >>>>> - OIDC_Implicit_Redirect_WithConsent >>>>> - OIDC_Password_Grant >>>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent >>>>> - SAML2_SSO_Redirect_Binding >>>>> - Concurrency : 20 >>>>> - TPS: 240 per minute >>>>> >>>>> No blocking issue reported. +1 for proceed. :) >>>>> >>>>> >>>>> *Thanks & Best Regards!* >>>>> >>>>> *Achini Jayasena* >>>>> *Software Engineer - QA | WSO2* >>>>> >>>>> Email: [email protected] >>>>> Mobile: +94 713 882 897 >>>>> >>>>> [image: http://wso2.com/signature] <http://wso2.com/signature> >>>>> >>>>> >>>>> On Wed, Oct 2, 2019 at 10:31 PM Mathuriga Thavarajah < >>>>> [email protected]> wrote: >>>>> >>>>>> Hi All, >>>>>> >>>>>> Security Scanning reports (Static and Dynamic) were analyzed and >>>>>> reviewed. Hence +1 from the Platform Security Team for proceeding with >>>>>> the release. >>>>>> >>>>>> Thanks. >>>>>> >>>>>> Regards, >>>>>> Mathuriga. >>>>>> >>>>>> On Wed, Oct 2, 2019 at 10:08 PM Niluka Sripali Monnankulama < >>>>>> [email protected]> wrote: >>>>>> >>>>>>> Hi all, >>>>>>> >>>>>>> >>>>>>> Verified and validated below listed features are working as expected. >>>>>>> >>>>>>> >>>>>>> Test Environment OS- MAC O/S, Windows-Server-2016-standard-64bit >>>>>>> >>>>>>> Java version- 1.8.0_171, 11.0.4 >>>>>>> >>>>>>> Database - H2, Oracle 12c >>>>>>> >>>>>>> User type, Primary, Secondary, Super user and Tenant user >>>>>>> >>>>>>> >>>>>>> >>>>>>> - User management with multilayer approval >>>>>>> - Manage user stores(Create,update,delete,disable) >>>>>>> - Configuring Claims for a Service Provider >>>>>>> - Consent Management for Self Sign Up >>>>>>> - Single Sign-On / Federated authentication for a web >>>>>>> application with SAML - SP-Init, IDP-Init >>>>>>> - SAML2 IdP Initiated Single Logout >>>>>>> >>>>>>> Front channel post binding >>>>>>> Front channel redirect binding >>>>>>> Backchannel >>>>>>> >>>>>>> - SAML SSO with end-user consent and claim mapping >>>>>>> - Add a custom claim to OIDC >>>>>>> - Adding Multiple Federated authenticators >>>>>>> - By-parsing the IS authenticator selection page >>>>>>> - Identity Analytics-SSO analyzed via WSO2 IS Analytics. >>>>>>> - QSG- Self signup, workflow management >>>>>>> - JIT provision >>>>>>> - Ask Password >>>>>>> - Add Email template >>>>>>> - Connectors- GITHUB, LinkedIn, Google >>>>>>> - Installing as a Windows Service (Java version- 1.8.0_171) >>>>>>> - REST APIs for the user portal >>>>>>> >>>>>>> Account Recovery - Update challenge questions answers >>>>>>> >>>>>>> Authorized OAuth Apps - List and revoke >>>>>>> >>>>>>> User session management >>>>>>> >>>>>>> Pending Approvals >>>>>>> >>>>>>> >>>>>>> +1 to proceed. >>>>>>> >>>>>>> On Wed, Oct 2, 2019 at 4:26 PM Buddhima Udaranga <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>>> Hi, >>>>>>>> >>>>>>>> We have tested the Configuration Management REST API with the WSO2 >>>>>>>> IS 5.9.0-RC2 with the MySQL database. No blocker issues found. +1 to >>>>>>>> proceed. >>>>>>>> >>>>>>>> Thanks, >>>>>>>> *Buddhima Udaranga*|Software Engineer| WSO2 Inc. <http://wso2.com/> >>>>>>>> (M)+94 714742094 | (E) [email protected] >>>>>>>> <https://wso2.com/signature> >>>>>>>> >>>>>>>> >>>>>>>> On Wed, Oct 2, 2019 at 10:59 AM Piraveena Paralogarajah < >>>>>>>> [email protected]> wrote: >>>>>>>> >>>>>>>>> Hi all, >>>>>>>>> >>>>>>>>> >>>>>>>>> We are pleased to announce the second release candidate of WSO2 >>>>>>>>> Identity Server 5.9.0. >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> New Features >>>>>>>>> >>>>>>>>> - >>>>>>>>> >>>>>>>>> An improved, simpler configuration model >>>>>>>>> - >>>>>>>>> >>>>>>>>> RESTful APIs for user self-services >>>>>>>>> - >>>>>>>>> >>>>>>>>> Passwordless authentication with WebAuthn >>>>>>>>> - >>>>>>>>> >>>>>>>>> Reusable script library for adaptive authentication >>>>>>>>> - >>>>>>>>> >>>>>>>>> Cross-protocol single logout capability >>>>>>>>> - >>>>>>>>> >>>>>>>>> Inbuilt support to view and revoke user sessions >>>>>>>>> - >>>>>>>>> >>>>>>>>> Azure AD/Office365 multi-domain federation support >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> Fixes >>>>>>>>> >>>>>>>>> This release includes the following issue fixes and improvements: >>>>>>>>> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-m1 >>>>>>>>> <https://github.com/wso2/product-is/milestone/85?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-m2 >>>>>>>>> <https://github.com/wso2/product-is/milestone/86?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-m3 >>>>>>>>> <https://github.com/wso2/product-is/milestone/87?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-m4 >>>>>>>>> <https://github.com/wso2/product-is/milestone/88?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-m5 >>>>>>>>> <https://github.com/wso2/product-is/milestone/90?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-m6 >>>>>>>>> <https://github.com/wso2/product-is/milestone/91?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-alpha >>>>>>>>> <https://github.com/wso2/product-is/milestone/89?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-beta >>>>>>>>> <https://github.com/wso2/product-is/milestone/93?closed=1> >>>>>>>>> - >>>>>>>>> >>>>>>>>> 5.9.0-GA >>>>>>>>> <https://github.com/wso2/product-is/milestone/83?closed=1> >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> Source and Distribution >>>>>>>>> >>>>>>>>> The source and distribution >>>>>>>>> <https://github.com/wso2/product-is/releases/download/v5.9.0-rc2/wso2is-5.9.0-rc2.zip> >>>>>>>>> are available at >>>>>>>>> https://github.com/wso2/product-is/releases/tag/v5.9.0-rc2 >>>>>>>>> >>>>>>>>> >>>>>>>>> Please download the product, test it, and vote using the following >>>>>>>>> convention. >>>>>>>>> >>>>>>>>> [+] Stable - go ahead and release >>>>>>>>> >>>>>>>>> [-] Broken - do not release (explain why) >>>>>>>>> >>>>>>>>> Thanks, >>>>>>>>> >>>>>>>>> WSO2 Identity and Access Management Team >>>>>>>>> >>>>>>>>> *Piraveena Paralogarajah* >>>>>>>>> Software Engineer | WSO2 Inc. >>>>>>>>> *(m)* +94776099594 | *(e)* [email protected] >>>>>>>>> >>>>>>>>> _______________________________________________ >>>>>>>> Dev mailing list >>>>>>>> [email protected] >>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> Niluka Sripali Monnankulama >>>>>>> Software Engineer - WSO2 Sri Lanka >>>>>>> >>>>>>> Mobile : +94 76 76 52843 >>>>>>> >>>>>>> _______________________________________________ >>>>>>> Dev mailing list >>>>>>> [email protected] >>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> >>>>>> *Mathuriga Thavarajah* >>>>>> Software Engineer >>>>>> WSO2 Inc. - http ://wso2.com >>>>>> >>>>>> Email : [email protected] >>>>>> Mobile : +94778191300 >>>>>> >>>>>> >>>>>> >>>>>> *[image: http://wso2.com/signature] <http://wso2.com/signature>* >>>>>> _______________________________________________ >>>>>> Dev mailing list >>>>>> [email protected] >>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>> >>>>> >>>> >>>> -- >>>> Wijith Bandara >>>> Software Engineer | WSO2 >>>> >>>> Email : [email protected] >>>> Mobile : +94718970370 >>>> Web : http://wso2.com >>>> >>>> <http://wso2.com/signature> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>> >>> >>> -- >>> >>> Hasanthi Dissanayake | Associate Technical Lead | WSO2 Inc. >>> (m) +94718407133 | (w) +94112145345 | Email: [email protected] | Blog: >>> https://medium.com/@hasanthipurnimadissanayake >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >> >> >> -- >> Sathya Bandara >> Senior Software Engineer >> Blog: https://medium.com/@technospace >> WSO2 Inc. http://wso2.com >> Mobile: (+94) 715 360 421 <+94%2071%20411%205032> >> >> <+94%2071%20411%205032> >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> > > > -- > Nilasini Thirunavukkarasu | Senior Software Engineer | WSO2 Inc. > (m) +94775241823 | Email: [email protected] > <http://wso2.com/signature> > > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > -- Farasath Ahamed Associate Technical Lead, WSO2 Inc.: http://wso2.com Mobile: +94777603866 Blog: https://farasath.blogspot.com / https://medium.com/@farasath Twitter: @farazath619 <https://twitter.com/farazath619> <http://wso2.com/signature>
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
