Hi all.
I have tested the following scenarios:
- Scope Management REST API
- XACML based scope validation for token issuing phase in the following
OAuth grant types
- Authorization code flow
- password grant
- client_credentials
- Implicit flow
- XACML based authorization
No blocker issues found
[+] Stable - go ahead and release
Thanks,
Piraveena
*Piraveena Paralogarajah*
Software Engineer | WSO2 Inc.
*(m)* +94776099594 | *(e)* [email protected]
On Thu, Oct 3, 2019 at 3:45 PM Ashen Weerathunga <[email protected]> wrote:
> Hi All,
>
> I have tested the following scenarios and no blocking issues found.
>
> - SSO with SAML
> - Federated authentication with Google
> - Federated authentication with Facebook
> - SSO with multi-option and multi-step authentication
> - Role-based Adaptive authentication
>
> [+] Stable - go ahead and release
>
> Thanks,
> Ashen
>
>
> On Thu, Oct 3, 2019 at 2:34 PM Shanika Wickramasinghe <[email protected]>
> wrote:
>
>> Hi All,
>>
>> I have tested the following features and no issues found
>>
>> Ubuntu 16.04 | MSSQL | Embedded Ldap Primary User Store | Super Tenant
>>
>>
>> -
>>
>> Manage roles with SCIM 2.0 Create Group, Delete Group, Filter Groups,
>> Search Groups, Update Group - PATCH, Update Group - PUT
>> -
>>
>> Manage users with SCIM 2.0 Create User Delete User by ID Filter Users
>> Search Users Update User - PATCH Update User - PUT
>> -
>>
>> Recover Username with dashboard
>> -
>>
>> Recover Password with dashboard
>>
>>
>> Ubuntu 16.04 | MSSQL | SecondaryUser Store | Super Tenant
>>
>>
>> -
>>
>> SP pagination with UI
>> -
>>
>> SP pagination with Admin Services
>> -
>>
>> Account Lock
>> -
>>
>> Recaptcha with Single Sign On
>>
>>
>> Ubuntu 16.04 | H2/MSSQL | Embedded Ldap Primary User Store | Super Tenant
>>
>>
>> -
>>
>> Manage Workflows
>>
>>
>> Ubuntu 16.04 | H2 | Embedded Ldap Primary User Store | Super Tenant
>>
>>
>> -
>>
>> Manage Workflows with QSG sample
>> -
>>
>> User self-registration via REST APIs
>> -
>>
>> User self-registration via user portal
>> -
>>
>> User manage his own user account, Update user profile
>> -
>>
>> OAuth 1.0 SP Creation/ Update
>>
>>
>> +1 Go ahead and release.
>>
>>
>> Thanks,
>>
>> Shanika
>>
>> On Thu, Oct 3, 2019 at 9:16 AM Achini Jayasena <[email protected]> wrote:
>>
>>> Hi All,
>>>
>>> Tested and verified with performance test and long running test. Test
>>> result match with the expectations.
>>>
>>> *Performance test*
>>>
>>> Summary*: *Performance has been improved comparing to the product
>>> version 5.8
>>>
>>> Deployment
>>>
>>> - OS: Ubuntu
>>> - DB: Mysql
>>> - Heap: 4G/2G
>>> - CPU cores: 4
>>> - Concurrent users: 50, 100, 150, 300, 500
>>>
>>> Scenarios:
>>>
>>> - Authenticate_Super_Tenant_User
>>> - OAuth_AuthCode_Redirect_WithConsent
>>> - OAuth_Client_Credentials_Grant
>>> - OAuth_Implicit_Redirect_WithConsent
>>> - OAuth_Password_Grant
>>> - OIDC_AuthCode_Redirect_WithConsent
>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent
>>> - OIDC_Implicit_Redirect_WithConsent
>>> - OIDC_Password_Grant
>>> - SAML2_SSO_Redirect_Binding
>>> - Challenge questions by super tenant users
>>> - Refresh token refresh grant - Renewal false
>>>
>>> *Long running test*
>>>
>>> Summery*: *No issue reported.
>>>
>>> Deployment :
>>>
>>> - IS node
>>> - Instance type: c5.xlarge
>>> - vCPU:4
>>> - RAM: 8GB
>>> - Heap: 2G allocated for IS
>>>
>>>
>>> - RDS as the MySQL DB
>>> - Mysql engine version : 5.7.22
>>> - vCPU: 4
>>> - Instance class : db.m4.xlarge
>>> - RAM: 16 GB
>>> - Storage: 100 GiB
>>> - Executing test scenarios:
>>> - Authenticate_Super_Tenant_User
>>> - OAuth_AuthCode_Redirect_WithConsent
>>> - OAuth_Password_Grant
>>> - OIDC_AuthCode_Redirect_WithConsent
>>> - OIDC_Implicit_Redirect_WithConsent
>>> - OIDC_Password_Grant
>>> - OIDC_AuthCode_Request_Path_Authenticator_WithConsent
>>> - SAML2_SSO_Redirect_Binding
>>> - Concurrency : 20
>>> - TPS: 240 per minute
>>>
>>> No blocking issue reported. +1 for proceed. :)
>>>
>>>
>>> *Thanks & Best Regards!*
>>>
>>> *Achini Jayasena*
>>> *Software Engineer - QA | WSO2*
>>>
>>> Email: [email protected]
>>> Mobile: +94 713 882 897
>>>
>>> [image: http://wso2.com/signature] <http://wso2.com/signature>
>>>
>>>
>>> On Wed, Oct 2, 2019 at 10:31 PM Mathuriga Thavarajah <[email protected]>
>>> wrote:
>>>
>>>> Hi All,
>>>>
>>>> Security Scanning reports (Static and Dynamic) were analyzed and
>>>> reviewed. Hence +1 from the Platform Security Team for proceeding with
>>>> the release.
>>>>
>>>> Thanks.
>>>>
>>>> Regards,
>>>> Mathuriga.
>>>>
>>>> On Wed, Oct 2, 2019 at 10:08 PM Niluka Sripali Monnankulama <
>>>> [email protected]> wrote:
>>>>
>>>>> Hi all,
>>>>>
>>>>>
>>>>> Verified and validated below listed features are working as expected.
>>>>>
>>>>>
>>>>> Test Environment OS- MAC O/S, Windows-Server-2016-standard-64bit
>>>>>
>>>>> Java version- 1.8.0_171, 11.0.4
>>>>>
>>>>> Database - H2, Oracle 12c
>>>>>
>>>>> User type, Primary, Secondary, Super user and Tenant user
>>>>>
>>>>>
>>>>>
>>>>> - User management with multilayer approval
>>>>> - Manage user stores(Create,update,delete,disable)
>>>>> - Configuring Claims for a Service Provider
>>>>> - Consent Management for Self Sign Up
>>>>> - Single Sign-On / Federated authentication for a web application
>>>>> with SAML - SP-Init, IDP-Init
>>>>> - SAML2 IdP Initiated Single Logout
>>>>>
>>>>> Front channel post binding
>>>>> Front channel redirect binding
>>>>> Backchannel
>>>>>
>>>>> - SAML SSO with end-user consent and claim mapping
>>>>> - Add a custom claim to OIDC
>>>>> - Adding Multiple Federated authenticators
>>>>> - By-parsing the IS authenticator selection page
>>>>> - Identity Analytics-SSO analyzed via WSO2 IS Analytics.
>>>>> - QSG- Self signup, workflow management
>>>>> - JIT provision
>>>>> - Ask Password
>>>>> - Add Email template
>>>>> - Connectors- GITHUB, LinkedIn, Google
>>>>> - Installing as a Windows Service (Java version- 1.8.0_171)
>>>>> - REST APIs for the user portal
>>>>>
>>>>> Account Recovery - Update challenge questions answers
>>>>>
>>>>> Authorized OAuth Apps - List and revoke
>>>>>
>>>>> User session management
>>>>>
>>>>> Pending Approvals
>>>>>
>>>>>
>>>>> +1 to proceed.
>>>>>
>>>>> On Wed, Oct 2, 2019 at 4:26 PM Buddhima Udaranga <[email protected]>
>>>>> wrote:
>>>>>
>>>>>> Hi,
>>>>>>
>>>>>> We have tested the Configuration Management REST API with the WSO2 IS
>>>>>> 5.9.0-RC2 with the MySQL database. No blocker issues found. +1 to
>>>>>> proceed.
>>>>>>
>>>>>> Thanks,
>>>>>> *Buddhima Udaranga*|Software Engineer| WSO2 Inc. <http://wso2.com/>
>>>>>> (M)+94 714742094 | (E) [email protected]
>>>>>> <https://wso2.com/signature>
>>>>>>
>>>>>>
>>>>>> On Wed, Oct 2, 2019 at 10:59 AM Piraveena Paralogarajah <
>>>>>> [email protected]> wrote:
>>>>>>
>>>>>>> Hi all,
>>>>>>>
>>>>>>>
>>>>>>> We are pleased to announce the second release candidate of WSO2
>>>>>>> Identity Server 5.9.0.
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> New Features
>>>>>>>
>>>>>>> -
>>>>>>>
>>>>>>> An improved, simpler configuration model
>>>>>>> -
>>>>>>>
>>>>>>> RESTful APIs for user self-services
>>>>>>> -
>>>>>>>
>>>>>>> Passwordless authentication with WebAuthn
>>>>>>> -
>>>>>>>
>>>>>>> Reusable script library for adaptive authentication
>>>>>>> -
>>>>>>>
>>>>>>> Cross-protocol single logout capability
>>>>>>> -
>>>>>>>
>>>>>>> Inbuilt support to view and revoke user sessions
>>>>>>> -
>>>>>>>
>>>>>>> Azure AD/Office365 multi-domain federation support
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> Fixes
>>>>>>>
>>>>>>> This release includes the following issue fixes and improvements:
>>>>>>>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m1
>>>>>>> <https://github.com/wso2/product-is/milestone/85?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m2
>>>>>>> <https://github.com/wso2/product-is/milestone/86?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m3
>>>>>>> <https://github.com/wso2/product-is/milestone/87?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m4
>>>>>>> <https://github.com/wso2/product-is/milestone/88?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m5
>>>>>>> <https://github.com/wso2/product-is/milestone/90?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-m6
>>>>>>> <https://github.com/wso2/product-is/milestone/91?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-alpha
>>>>>>> <https://github.com/wso2/product-is/milestone/89?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-beta
>>>>>>> <https://github.com/wso2/product-is/milestone/93?closed=1>
>>>>>>> -
>>>>>>>
>>>>>>> 5.9.0-GA
>>>>>>> <https://github.com/wso2/product-is/milestone/83?closed=1>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> Source and Distribution
>>>>>>>
>>>>>>> The source and distribution
>>>>>>> <https://github.com/wso2/product-is/releases/download/v5.9.0-rc2/wso2is-5.9.0-rc2.zip>
>>>>>>> are available at
>>>>>>> https://github.com/wso2/product-is/releases/tag/v5.9.0-rc2
>>>>>>>
>>>>>>>
>>>>>>> Please download the product, test it, and vote using the following
>>>>>>> convention.
>>>>>>>
>>>>>>> [+] Stable - go ahead and release
>>>>>>>
>>>>>>> [-] Broken - do not release (explain why)
>>>>>>>
>>>>>>> Thanks,
>>>>>>>
>>>>>>> WSO2 Identity and Access Management Team
>>>>>>>
>>>>>>> *Piraveena Paralogarajah*
>>>>>>> Software Engineer | WSO2 Inc.
>>>>>>> *(m)* +94776099594 | *(e)* [email protected]
>>>>>>>
>>>>>>> _______________________________________________
>>>>>> Dev mailing list
>>>>>> [email protected]
>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Niluka Sripali Monnankulama
>>>>> Software Engineer - WSO2 Sri Lanka
>>>>>
>>>>> Mobile : +94 76 76 52843
>>>>>
>>>>> _______________________________________________
>>>>> Dev mailing list
>>>>> [email protected]
>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>>
>>>>
>>>>
>>>> --
>>>>
>>>> *Mathuriga Thavarajah*
>>>> Software Engineer
>>>> WSO2 Inc. - http ://wso2.com
>>>>
>>>> Email : [email protected]
>>>> Mobile : +94778191300
>>>>
>>>>
>>>>
>>>> *[image: http://wso2.com/signature] <http://wso2.com/signature>*
>>>> _______________________________________________
>>>> Dev mailing list
>>>> [email protected]
>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>>
>>>
>>
>> --
>> *Shanika Wickramasinghe*
>> Software Engineer - QA Team
>>
>> Email : [email protected]
>> Mobile : +94713503563
>> Web : http://wso2.com
>>
>> <http://wso2.com/signature>
>>
>
>
> --
> Ashen Weerathunga | Senior Software Engineer | WSO2 Inc.
> (m) +94716042995 | (w) +94112145345 | Email: [email protected]
> <http://wso2.com/signature>
>
>
>
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
