subject:"\[Dev\] How to restrict accessing web application"

Re: [Dev] How to restrict accessing web application

2014-11-16 Thread Johann Nallathamby

That is for fine-grained authorization with XACML. I was talking about the
role-permission based authorization we have for all our admin service stuff
which comes from user.core and is part of all the products.

On Mon, Nov 17, 2014 at 10:19 AM, Danesh Kuruppu  wrote:

> Hi Johann,
>
> Are we need separate Identity Server instance running as PDP for this
> approach. I have gone through the AS sample [1], there we need to start IS
> instance.
>
> [1]
> https://docs.wso2.com/display/AS521/Checking+the+Authorization+of+WebApp+Requests
>
> Can we setup PDP in the product(e.g: GREG Product) itself rather using
> separate IS instance as PDP ?
>
> Thanks
> Danesh
>
>
> On Sun, Nov 16, 2014 at 7:20 AM, Danesh Kuruppu  wrote:
>
>> Thanks Johann, I will check
>>
>> On Sat, Nov 15, 2014 at 7:37 AM, Johann Nallathamby 
>> wrote:
>>
>>>
>>>
>>> On Sat, Nov 15, 2014 at 7:32 AM, Johann Nallathamby 
>>> wrote:
>>>
 Carbon products follow a fine-grained permission based approach. So
 first you should define relevant set of permissions for your webapp. Then
 you should be able to enforce access control using the authentication and
 authorization facilities provided by the OSGi realm service.

>>>
>>> Actually not the OSGi service, but you can get it from CarbonConext as
>>> follows.
>>>
>>> CarbonContext.getThreadLocalCarbonContext().getUserRealm()
>>>

 On Fri, Nov 14, 2014 at 8:08 AM, Danesh Kuruppu 
 wrote:

> Hi all,
>
> I am currently working on upgrading the solr in registry indexing.
> with the proposed design, we are going to deploy solr webapp in the carbon
> server and use it for registry indexing and we need to allow accessing 
> solr
> web app only for admin users.
>
> What is the best way I could follow to restrict the web app access in
> carbon server.
>
> Thanks
> --
>
> Danesh Kuruppu
> Software Engineer
> WSO2 Inc,
> Mobile: +94 (77) 1690552
>
> ___
> Dev mailing list
> Dev@wso2.org
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
>


 --
 Thanks & Regards,

 *Johann Dilantha Nallathamby*
 Associate Technical Lead & Product Lead of WSO2 Identity Server
 Integration Technologies Team
 WSO2, Inc.
 lean.enterprise.middleware

 Mobile - *+9476950*
 Blog - *http://nallaa.wordpress.com *

>>>
>>>
>>>
>>> --
>>> Thanks & Regards,
>>>
>>> *Johann Dilantha Nallathamby*
>>> Associate Technical Lead & Product Lead of WSO2 Identity Server
>>> Integration Technologies Team
>>> WSO2, Inc.
>>> lean.enterprise.middleware
>>>
>>> Mobile - *+9476950*
>>> Blog - *http://nallaa.wordpress.com *
>>>
>>
>>
>>
>> --
>>
>> Danesh Kuruppu
>> Software Engineer
>> WSO2 Inc,
>> Mobile: +94 (77) 1690552
>>
>
>
>
> --
>
> Danesh Kuruppu
> Software Engineer
> WSO2 Inc,
> Mobile: +94 (77) 1690552
>



-- 
Thanks & Regards,

*Johann Dilantha Nallathamby*
Associate Technical Lead & Product Lead of WSO2 Identity Server
Integration Technologies Team
WSO2, Inc.
lean.enterprise.middleware

Mobile - *+9476950*
Blog - *http://nallaa.wordpress.com *
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] How to restrict accessing web application

2014-11-16 Thread Danesh Kuruppu

Hi Johann,

Are we need separate Identity Server instance running as PDP for this
approach. I have gone through the AS sample [1], there we need to start IS
instance.

[1]
https://docs.wso2.com/display/AS521/Checking+the+Authorization+of+WebApp+Requests

Can we setup PDP in the product(e.g: GREG Product) itself rather using
separate IS instance as PDP ?

Thanks
Danesh


On Sun, Nov 16, 2014 at 7:20 AM, Danesh Kuruppu  wrote:

> Thanks Johann, I will check
>
> On Sat, Nov 15, 2014 at 7:37 AM, Johann Nallathamby 
> wrote:
>
>>
>>
>> On Sat, Nov 15, 2014 at 7:32 AM, Johann Nallathamby 
>> wrote:
>>
>>> Carbon products follow a fine-grained permission based approach. So
>>> first you should define relevant set of permissions for your webapp. Then
>>> you should be able to enforce access control using the authentication and
>>> authorization facilities provided by the OSGi realm service.
>>>
>>
>> Actually not the OSGi service, but you can get it from CarbonConext as
>> follows.
>>
>> CarbonContext.getThreadLocalCarbonContext().getUserRealm()
>>
>>>
>>> On Fri, Nov 14, 2014 at 8:08 AM, Danesh Kuruppu  wrote:
>>>
 Hi all,

 I am currently working on upgrading the solr in registry indexing. with
 the proposed design, we are going to deploy solr webapp in the carbon
 server and use it for registry indexing and we need to allow accessing solr
 web app only for admin users.

 What is the best way I could follow to restrict the web app access in
 carbon server.

 Thanks
 --

 Danesh Kuruppu
 Software Engineer
 WSO2 Inc,
 Mobile: +94 (77) 1690552

 ___
 Dev mailing list
 Dev@wso2.org
 http://wso2.org/cgi-bin/mailman/listinfo/dev


>>>
>>>
>>> --
>>> Thanks & Regards,
>>>
>>> *Johann Dilantha Nallathamby*
>>> Associate Technical Lead & Product Lead of WSO2 Identity Server
>>> Integration Technologies Team
>>> WSO2, Inc.
>>> lean.enterprise.middleware
>>>
>>> Mobile - *+9476950*
>>> Blog - *http://nallaa.wordpress.com *
>>>
>>
>>
>>
>> --
>> Thanks & Regards,
>>
>> *Johann Dilantha Nallathamby*
>> Associate Technical Lead & Product Lead of WSO2 Identity Server
>> Integration Technologies Team
>> WSO2, Inc.
>> lean.enterprise.middleware
>>
>> Mobile - *+9476950*
>> Blog - *http://nallaa.wordpress.com *
>>
>
>
>
> --
>
> Danesh Kuruppu
> Software Engineer
> WSO2 Inc,
> Mobile: +94 (77) 1690552
>



-- 

Danesh Kuruppu
Software Engineer
WSO2 Inc,
Mobile: +94 (77) 1690552
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] How to restrict accessing web application

2014-11-15 Thread Danesh Kuruppu

Thanks Johann, I will check

On Sat, Nov 15, 2014 at 7:37 AM, Johann Nallathamby  wrote:

>
>
> On Sat, Nov 15, 2014 at 7:32 AM, Johann Nallathamby 
> wrote:
>
>> Carbon products follow a fine-grained permission based approach. So first
>> you should define relevant set of permissions for your webapp. Then you
>> should be able to enforce access control using the authentication and
>> authorization facilities provided by the OSGi realm service.
>>
>
> Actually not the OSGi service, but you can get it from CarbonConext as
> follows.
>
> CarbonContext.getThreadLocalCarbonContext().getUserRealm()
>
>>
>> On Fri, Nov 14, 2014 at 8:08 AM, Danesh Kuruppu  wrote:
>>
>>> Hi all,
>>>
>>> I am currently working on upgrading the solr in registry indexing. with
>>> the proposed design, we are going to deploy solr webapp in the carbon
>>> server and use it for registry indexing and we need to allow accessing solr
>>> web app only for admin users.
>>>
>>> What is the best way I could follow to restrict the web app access in
>>> carbon server.
>>>
>>> Thanks
>>> --
>>>
>>> Danesh Kuruppu
>>> Software Engineer
>>> WSO2 Inc,
>>> Mobile: +94 (77) 1690552
>>>
>>> ___
>>> Dev mailing list
>>> Dev@wso2.org
>>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>>
>>>
>>
>>
>> --
>> Thanks & Regards,
>>
>> *Johann Dilantha Nallathamby*
>> Associate Technical Lead & Product Lead of WSO2 Identity Server
>> Integration Technologies Team
>> WSO2, Inc.
>> lean.enterprise.middleware
>>
>> Mobile - *+9476950*
>> Blog - *http://nallaa.wordpress.com *
>>
>
>
>
> --
> Thanks & Regards,
>
> *Johann Dilantha Nallathamby*
> Associate Technical Lead & Product Lead of WSO2 Identity Server
> Integration Technologies Team
> WSO2, Inc.
> lean.enterprise.middleware
>
> Mobile - *+9476950*
> Blog - *http://nallaa.wordpress.com *
>



-- 

Danesh Kuruppu
Software Engineer
WSO2 Inc,
Mobile: +94 (77) 1690552
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] How to restrict accessing web application

2014-11-14 Thread Johann Nallathamby

On Sat, Nov 15, 2014 at 7:32 AM, Johann Nallathamby  wrote:

> Carbon products follow a fine-grained permission based approach. So first
> you should define relevant set of permissions for your webapp. Then you
> should be able to enforce access control using the authentication and
> authorization facilities provided by the OSGi realm service.
>

Actually not the OSGi service, but you can get it from CarbonConext as
follows.

CarbonContext.getThreadLocalCarbonContext().getUserRealm()

>
> On Fri, Nov 14, 2014 at 8:08 AM, Danesh Kuruppu  wrote:
>
>> Hi all,
>>
>> I am currently working on upgrading the solr in registry indexing. with
>> the proposed design, we are going to deploy solr webapp in the carbon
>> server and use it for registry indexing and we need to allow accessing solr
>> web app only for admin users.
>>
>> What is the best way I could follow to restrict the web app access in
>> carbon server.
>>
>> Thanks
>> --
>>
>> Danesh Kuruppu
>> Software Engineer
>> WSO2 Inc,
>> Mobile: +94 (77) 1690552
>>
>> ___
>> Dev mailing list
>> Dev@wso2.org
>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>
>>
>
>
> --
> Thanks & Regards,
>
> *Johann Dilantha Nallathamby*
> Associate Technical Lead & Product Lead of WSO2 Identity Server
> Integration Technologies Team
> WSO2, Inc.
> lean.enterprise.middleware
>
> Mobile - *+9476950*
> Blog - *http://nallaa.wordpress.com *
>



-- 
Thanks & Regards,

*Johann Dilantha Nallathamby*
Associate Technical Lead & Product Lead of WSO2 Identity Server
Integration Technologies Team
WSO2, Inc.
lean.enterprise.middleware

Mobile - *+9476950*
Blog - *http://nallaa.wordpress.com *
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] How to restrict accessing web application

2014-11-14 Thread Johann Nallathamby

Carbon products follow a fine-grained permission based approach. So first
you should define relevant set of permissions for your webapp. Then you
should be able to enforce access control using the authentication and
authorization facilities provided by the OSGi realm service.

On Fri, Nov 14, 2014 at 8:08 AM, Danesh Kuruppu  wrote:

> Hi all,
>
> I am currently working on upgrading the solr in registry indexing. with
> the proposed design, we are going to deploy solr webapp in the carbon
> server and use it for registry indexing and we need to allow accessing solr
> web app only for admin users.
>
> What is the best way I could follow to restrict the web app access in
> carbon server.
>
> Thanks
> --
>
> Danesh Kuruppu
> Software Engineer
> WSO2 Inc,
> Mobile: +94 (77) 1690552
>
> ___
> Dev mailing list
> Dev@wso2.org
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
>

-- 
Thanks & Regards,

*Johann Dilantha Nallathamby*
Associate Technical Lead & Product Lead of WSO2 Identity Server
Integration Technologies Team
WSO2, Inc.
lean.enterprise.middleware

Mobile - *+9476950*
Blog - *http://nallaa.wordpress.com *
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

[Dev] How to restrict accessing web application

2014-11-13 Thread Danesh Kuruppu

Hi all,

I am currently working on upgrading the solr in registry indexing. with the
proposed design, we are going to deploy solr webapp in the carbon server
and use it for registry indexing and we need to allow accessing solr web
app only for admin users.

What is the best way I could follow to restrict the web app access in
carbon server.

Thanks
-- 

Danesh Kuruppu
Software Engineer
WSO2 Inc,
Mobile: +94 (77) 1690552
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] How to restrict accessing web application

Re: [Dev] How to restrict accessing web application

Re: [Dev] How to restrict accessing web application

Re: [Dev] How to restrict accessing web application

Re: [Dev] How to restrict accessing web application

[Dev] How to restrict accessing web application

6 matches

Site Navigation

Mail list logo

Footer information