Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Omindu Rathnaweera
Hi All, Did a few basic tests covering the functionalities around OIDC, SAML and Consent Management. [+] Stable - go ahead and release Thanks, Omindu. On Wed, May 22, 2019 at 10:17 PM Thanuja Jayasinghe wrote: > Hi All, > > Tested following scenarios, > > - Local user account association > -

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Malithi Edirisinghe
Hi All, Thanks for testing WSO2 Identity Server 5.8.0-RC3. Since this vote has passed with 20+ +1s and 0 -1s, we’re hereby closing this vote and proceeding with the WSO2 Identity Server 5.8.0 GA release. Best Regards, - WSO2 Identity Server Team - On Wed, May 22, 2019 at 10:17 PM Thanuja

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Malithi Edirisinghe
Hi All, Tested following flows and no issues found - UMA basic flow - OIDC hybrid flow [+] Stable - go ahead and release. Thanks, Malithi On Wed, May 22, 2019 at 9:56 PM Isura Karunaratne wrote: > Hi all, > > Tested following features and no issues found. > >- Self User

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Sarubi Thillainathan
Hi All, I have tested the following use cases. 1. Username recovery with reCaptcha 2. Password recovery with reCaptcha - Email - challenge question based 3. All supported SCIM2 /Users, /Groups and /Me endpoints, tested in primary user-store and JDBC as secondary user store. [+] Stable -

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Vihanga Liyanage
HI All, Tested below scenarios on IS 5.8.0-RC3 pack using MySQL 5.7 database. - Configured secondary JDBC userstore, listed users, added users, modified users and deleted users. - Add service provider, configured SAML SSO, authenticate with *the dispatch *sample web app. - Enable

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Hasini Witharana
HI All, Following scenarios were tested SCIM 2.0 Endpoints 1. Bulk Endpoint - Create Users in Bulk 2. Groups Endpoint - Create Group - Delete Group - Filter Groups 3. Users Endpoint - Create User - Delete User by ID - Filter Users

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Thanuja Jayasinghe
Hi All, Tested following scenarios, - Local user account association - OAuth2 grat types (code, implicit, password, client credential) - SAML2 SSO & SLO [+] Stable - go ahead and release. Thanks, Thanuja On Wed, May 22, 2019 at 8:07 PM Farasath Ahamed wrote: > Hi All, > > Test the below

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Maduranga Siriwardena
Hi All, Tested the authorization code grant flow with below configs using a native Android client. - PKCE enabled - authentication without the client secret enabled - Support PKCE 'Plain' Transform Algorithm disabled [+] Stable - go ahead and release. Regards, Maduranga. On Wed, May

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Senthalan Kanagalingam
Hi all, I have tested the following functionalities - Create a service provider using file - SSO with SAML and OAuth app - Role-based adaptive authentication policy No issues found, Hence +1 to go ahead and release. Thanks, Senthalan On Wed, May 22, 2019 at 8:07 PM Farasath Ahamed

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Isura Karunaratne
Hi all, Tested following features and no issues found. - Self User Registration - Password Policy - Password History - Password Recovery - Account Locking [+] Stable - go ahead and release. Cheers, Isura. On Wed, May 22, 2019 at 8:07 PM Farasath Ahamed wrote: > Hi All, > >

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Kanapriya Kuleswararajan
Hi All, Resend the vote as I couldn't find my name in the archive. Tested the following and It works fine. - Basic functionality with EmailOTP (Basic authenticator/Federated Authenticator as first step and EmailOTP as the second step) - EmailOTP with Email Templates - TOTP with basic

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Farasath Ahamed
Hi All, Test the below scenarios in IS 5.8.0 RC3 pack. - Token revocation with authorization code reuse - OIDC UserInfo with token sent in the request body and as bearer header - OAuth Application Owner update - Verified no username enumeration attacks possible during password

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Ashen Weerathunga
Hi All, I have tested the following scenarios related to IS analytics and found no issues. - Publishing login and session events to the IS analytics server - Analyzing login attempts - Analyzing session statistics - Triggering suspicious login alerts [+] Stable - go ahead and

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Hasanthi Purnima Dissanayake
Hi All, We had an issue receiving the replies to this thread and seems some of the replies have lost due to this. Hence if you have sent a vote and it is not available in the archive [1] please re-send the vote. All the votes we received are positive once, so we are planing to close the vote with

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-22 Thread Hasanthi Purnima Dissanayake
Hi All, I have tested following features. 1. OIDC backchannel logout 2. SAML front channel logout. No blocking issues found. [+] Stable - go ahead and release. Thanks, Hasanthi On Wed, May 22, 2019 at 8:03 AM Isuranga Perera wrote: > All: > I have tested Federated Authentication >

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-21 Thread Isuranga Perera
All: I have tested Federated Authentication [+] Stable - go ahead and release. Best Regards Isuranga Perera On Sun, May 19, 2019 at 7:30 PM Shanika Wickramasinghe wrote: > Hi All, > > I have tested the SAML SSO with POST binding and Redirect binding flows > and no issues found. > > +1 Go Ahead

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-20 Thread Mathuriga Thavarajah
Hi All, Security Scanning reports (Static and Dynamic) were analyzed and reviewed. Hence +1 from the Platform Security Team for proceeding with the release. Thanks. Regards, Mathuriga. On Sun, May 19, 2019 at 7:30 PM Shanika Wickramasinghe wrote: > Hi All, > > I have tested the SAML SSO with

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-17 Thread Ishara Karunarathna
HI All, Following scenarios were tested Risk based adaptive authentication in OIDC flow with SMS authentication. [+] Stable - go ahead and release. -Ishara On Thu, May 16, 2019 at 12:31 PM Hasanthi Purnima Dissanayake < hasan...@wso2.com> wrote: > Hi all, > > We are pleased to announce

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-17 Thread Janak Amarasena
Hi All, Tested the following using MySQL 5.7 as the DB in tenant mode. Also used a JDBC(MySQL) secondary user store. - Implicit Grant type - Authorization Code Grant type - Password Grant type - Client Credential Grant type - Refresh Token Grant type - Token Revoke - Rest -

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-16 Thread Tharindu Bandara
Hi all, I have tested below. - OAuth2 Dynamic Client Registration - Register - OAuth2 Dynamic Client Registration - Read - OAuth2 Dynamic Client Registration - Update - OAuth2 Dynamic Client Registration - Delete [+] Stable - go ahead and release. Thanks, Tharindu. On Thu, May 16,

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-16 Thread Ayesha Dissanayaka
Hi All, I have tested the following use cases in a vanilla instance on mac-OS. "User Management" 1. Self-registration with account confirmation enabled 2. Resend account confirmation flow 3. Username recovery 4. Password recovery 1. via Email 2. challenge question based

Re: [Architecture] [Dev] [VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-16 Thread Nilasini Thirunavukkarasu
Hi, 1. Tested the following using db2 as the secondary JDBC user store with tenant mode. - Implicit Grant type - Authorization Code Grant type - Password Grant type - Client Credential Grant type - Refresh Token Grant type - Hybrid flow (with all the response types) 2. Tested

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-16 Thread Dilin Dampahalage
Hi All, I have tested the below scenarios in IS and IS Analytics packs. - Starting up editor/dashboard/worker profiles in the analytics pack - Publishing events from IS pack - Checked and verified a successful and failure login - Checked and verified suspicious login alert -

Re: [Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-16 Thread Hasanthi Purnima Dissanayake
Hi All, The reason of breaking the RC2 vote is because it is reported an unused commented configuration description in carbon.xml [1]. From RC3 release that commented line in the configuration file is removed and no other code level changes done. Further in the Analytics-IS pack, the versions

[Architecture] [Dev][VOTE] Release WSO2 Identity Server 5.8.0 RC3

2019-05-16 Thread Hasanthi Purnima Dissanayake
Hi all, We are pleased to announce the third release candidate of WSO2 Identity Server 5.8.0. This release fixes the following issues, - 5.8.0-RC3 fixes - 5.8.0-RC2 fixes