[Architecture] HTTP Session Persistence feature for WSO2 Application Server

Hi Azeez/Sameera et al. ​ I've successfully completed HTTP Session Persistence feature[1] for Appserver next release. As of now I have a working prototype which it thoroughly tested with newly implemented Hazelcast based session replication feature as well. Currently it working as expected. I've

Re: [Architecture] [BAM] [Security] Securing REST API

On Tue, Jan 27, 2015 at 12:02 PM, Sumedha Rubasinghe wrote: > Any particular reason for securing product APIs using Basic Auth? > > Products like G-Reg, CDM are using OAuth 2.0 tokens for this instead. > +1 Basically API- Everywhere is the platform level solution for this kind of use cases. Th

Re: [Architecture] [BAM] [Security] Securing REST API

Any particular reason for securing product APIs using Basic Auth? Products like G-Reg, CDM are using OAuth 2.0 tokens for this instead. On Tue, Jan 27, 2015 at 11:53 AM, Gihan Anuruddha wrote: > Hi All, > > We are going to use a set of REST API [1] to communicate with the data > layer. Basical

[Architecture] [BAM] [Security] Securing REST API

Hi All, We are going to use a set of REST API [1] to communicate with the data layer. Basically, we are securing these REST APIs with basic auth. But we wanted to communicate with these REST APIs with already logged in user as well. Reason is we have a plan to use these REST API in our Message c

[Architecture] Support for SAML SSO HTTP Artifact Binding

Hi, I'm implementing SAML SSO HTTP Artifact Binding support in Identity Server. HTTP Artifact Binding is used to avoid SAML messages sending through HTTP user agent. Instead of the SAML message, a reference to the message called "Artifact" is send through the browser. To subsequently resolve the

Re: [Architecture] Support per API (ESB) logging configuration

Is this available for synapse wso2v6 (AM 1.8.0)? On 18 January 2015 at 22:11, Sagara Gunathunga wrote: > > > On Thu, Dec 4, 2014 at 4:39 PM, Miyuru Wanninayaka > wrote: > >> Hi all, >> >> Did we added this to ESB 4.9? >> > > Please find the PR for this improvement here[1]. > > [1] - https://gi

Re: [Architecture] Implementation of the getting the grouping id for application and subscription sharing

Hi All, This is I have done so far. 1. Added organisation attribute in SAML response from IS side. 2. When I got the login response, catched it in jaggery_acs.jag file decoded it using base64 decoding and added extracted the organisation using getGroupId() method to the session. 3.

Re: [Architecture] Meeting Note : Implement a Pluggable Version Strategy feature in APIManager

Resending to Architecture Thanks *Dinesh J. Weerakkody* Software Engineer WSO2 Inc. lean | enterprise | middleware M : +94 727 361788 | E : dine...@wso2.com | W : www.wso2.com On Mon, Jan 26, 2015 at 1:04 PM, Dinesh J Weerakkody wrote: > Hi All, > > We had a review meeting on 23 Jan 2015 to re