Re: [Dev] [IS] EC2 Performance Analysis : Sudden TPS drop in User Add in 500 concurrency with 10million users

Can you please compare the results you are getting now with the results we got a week before in the same setup...? I guess we could get ~1200 tps with 500 concurrency for 1M users, without any drop in the tps...? Thanks & regards, -Prabath On Sun, Jul 31, 2016 at 12:34 AM, Ishara Karunarathna

Re: [Dev] Fwd: [IS] Missing requirement in building product-is from source

I too got the same error while building in Mac - with java 1.8.0. Was able to fix the issue by upgrading the plugin to 1.8.0. But as per Darshana this will still have an issue with osgi annotations.. So - how do we proceed with this..? Do we face this issue only in IS..? Thanks & regards,

Re: [Dev] [IS] RESTful Fine Grained Authorization-as-a-Service (AZaaS)

When we are implementing the REST profile XACML - can we implement it as a microservice on MSF4J? It needs to be an independent deployable unit - which should function with a set of policies loaded from the filesystem... Can we do this..? Thanks & regards, -Prbath On Mon, Jul 4, 2016 at 11:44

Re: [Dev] Session fixation with Application Server 6.0.0 SAML 2.0 single-sign-on

Hi Chiranga, On Tue, Jun 21, 2016 at 6:02 AM, Chiranga Alwis wrote: > Hi all, > > during the code review held last Friday, there was a discussion on session > fixation. > > I performed a minor research on session fixation and checked out on > measures taken by Tomcat

Re: [Dev] [MSF4J] How to enable mutual TLS..?

Any update on this please... which release we are planning this feature for..? Thanks & regards, -Prabath On Tue, May 24, 2016 at 9:10 PM, Prabath Siriwardana <prab...@wso2.com> wrote: > We would also need to support other properties too - like limiting cipher > suites in T

Re: [Dev] [MSF4J] How to enable mutual TLS..?

> > > > On Tue, May 24, 2016 at 11:01 PM, Kasun Indrasiri <ka...@wso2.com> wrote: > >> We might have not implemented this at the transport level. >> @Ranawaka/Senduran any thoughts? >> >> On Tue, May 24, 2016 at 10:24 AM, Prabath Siriwardana <pr

[Dev] [MSF4J] How to enable mutual TLS..?

Looking at the doc [1] - and could not find any properties related to the $subject... [1]: https://docs.wso2.com/display/MSF4J110/Invoking+Your+Microservice+via+HTTPS -- Thanks & Regards, Prabath Twitter : @prabath LinkedIn : http://www.linkedin.com/in/prabathsiriwardena Mobile : +1 650 625

[Dev] MSF4J oauth2-security & basicauth samples

>From the README of the corresponding sample can we use HTTPS instead of HTTP, and point to [3], which explains how to enable TLS...? Here we are sending bearer token / user credentials over HTTP - which is not good, even in a sample... I guess adding a note to the README can fix it. [1]:

Re: [Dev] How do we handle acr_values in the OIDC authentication request..?

rm any action on the acr_values by default. Its > read and passed on to the grant handlers and other parts of the component > to be handled by suitable extension points. > > On Fri, Apr 22, 2016 at 4:05 AM, Prabath Siriwardana <prab...@wso2.com> > wrote: > >> $subje

[Dev] How do we handle acr_values in the OIDC authentication request..?

$subject -- Thanks & Regards, Prabath Twitter : @prabath LinkedIn : http://www.linkedin.com/in/prabathsiriwardena Mobile : +1 650 625 7950 http://blog.facilelogin.com http://blog.api-security.org ___ Dev mailing list Dev@wso2.org

Re: [Dev] [VOTE] Release WSO2 Identity Server 5.1.0 RC2

I didn't find any issues.. So here is my vote... [x] -Stable - go ahead and release Thanks & regards, -Prabath On Mon, Dec 21, 2015 at 3:54 PM, Prabath Siriwardana <prab...@wso2.com> wrote: > Smoke tested local account mapping feature with.. > > 1. Multiple tenants > 2

Re: [Dev] [VOTE] Release WSO2 Identity Server 5.1.0 RC2

Thanks.. works fine now... On Mon, Dec 21, 2015 at 11:41 AM, Hasintha Indrajee <hasin...@wso2.com> wrote: > Hi Prabath, > > It's available now. Can you please check. > > On Mon, Dec 21, 2015 at 10:16 PM, Prabath Siriwardana <prab...@wso2.com> > wrote: > >>

Re: [Dev] [VOTE] Release WSO2 Identity Server 5.1.0 RC2

Smoke tested local account mapping feature with.. 1. Multiple tenants 2. Multiple user stores (LDAP and MySQL) 3. Add/Delete user operations 4. Activate/Deactivate tenant operations 5. Activate/Deactivate user store operations All working fine except one minor issue (

Re: [Dev] [VOTE] Release WSO2 Identity Server 5.1.0 RC2

On Mon, Dec 21, 2015 at 4:59 AM, Hasintha Indrajee wrote: > Hi Devs, > > This is the second release candidate of WSO2 Identity Server 5.1.0. > > This release fixes the following issues: > https://wso2.org/jira/issues/?filter=12586 > > Please download, test and vote. > > Source

Re: [Dev] IDENTITY-4145

Hi Darshana, I can reproduce this in my setup... Lets have a hangout and will walk through that.. if not I will try to debug and see... Thanks & regards. -Prabath On Wed, Dec 2, 2015 at 9:00 PM, Darshana Gunawardana wrote: > Hi Prabath, > > Damith has tried to reproduced the

Re: [Dev] [IS 5.1.0] Remember Me and Idle Session Time out

Can you please explain what these values mean...? 1. Idle Session Time out 2. Remember Me Thanks & regards, -Prabath On Thu, Jul 23, 2015 at 3:52 AM, Darshana Gunawardana wrote: > This is fixed with https://github.com/wso2/carbon-identity/pull/657 > > Thanks, > Darshana > >

[Carbon-dev] Invitation: Carbon 3.2.2 release discussion @ Thu Sep 1 10:30am - 11:30am (carbon-dev@wso2.org)

BEGIN:VCALENDAR PRODID:-//Google Inc//Google Calendar 70.9054//EN VERSION:2.0 CALSCALE:GREGORIAN METHOD:REQUEST BEGIN:VEVENT DTSTART:20110901T05Z DTEND:20110901T06Z DTSTAMP:20110831T081914Z ORGANIZER;CN=prab...@wso2.com:mailto:prab...@wso2.com UID:0u1gj7jkedlqs2f4mr9qctq...@google.com

Re: [Carbon-dev] Removing XSMS and STS Services from ESB

On Wed, Mar 16, 2011 at 1:34 PM, Hiranya Jayathilaka hira...@wso2.comwrote: Hi, Supun and I had a brief chat on $subject and we feel that they are unnecessary for ESB. We'd rather have the echo service which is very useful for testing proxy services etc. WDYT? +1 What needs to be done

Re: [Carbon-dev] UT security performance.

Hi Jorge, What is the security policy you are using...? Is it UT over HTTPS or UT with message level encryption signature...? How do you validate user credentials...? What user store you are connected to [LDAP/JDBC]...? Thanks regards, -Prabath On Wed, Mar 16, 2011 at 12:43 AM, Jorge Infante

Re: [Carbon-dev] LDAP integration to Carbon core

server - it would be an OpenLDAP instance.. Thanks regards, -Prabath Sanjiva. On Sun, Mar 13, 2011 at 8:59 AM, Prabath Siriwardana prab...@wso2.comwrote: On Sun, Mar 13, 2011 at 8:09 AM, Sanjiva Weerawarana sanj...@wso2.comwrote: Prabath why do we not want to use embedded LDAP for Stratos

Re: [Carbon-dev] Possible bundle start order issue after LDAP was introduced

Hi AmilaJ/Hasini, Can we do something like this to make sure - user only needs to change LDAP ports only in one place.. If embedded LDAP is enabled UserManager reads the LDAP port from carbon.xml - Ports section... - not from user-mgt.xml. In this case user only needs to change the ports

Re: [Carbon-dev] LDAP integration to Carbon core

of that, we can use LDAP clustering.. Please let me know if I am not clear... Thanks regards, -Prabath If its a separate LDAP is it still a Carbon server running just the LDAP component? If not why not? Sanjiva. On Sun, Mar 6, 2011 at 10:01 PM, Prabath Siriwardana prab...@wso2.comwrote

Re: [Carbon-dev] User Management testing

On Thu, Mar 10, 2011 at 12:07 PM, Charitha Kankanamge chari...@wso2.comwrote: Significant changes have been done and we are finding a lot of L1s. We should test UM thoroughly. +1 Thanks regards, -Prabath Regards Charitha ___ Carbon-dev

Re: [Carbon-dev] WSO2 - LDAP - Groups Mapping Data

[added carbon-dev-group] Hi Kishore; * * *but the missing things it is just showing all instead I would like to see only the groups which the user is member of. How can I see that info. Also I would like to configure claims to get the groups info.* * * This is a very valid requirement. Although

Re: [Carbon-dev] Error while building ESB

Can you please try to build components/savan-core and retry.. Thanks regards, -Prabath On Mon, Mar 7, 2011 at 12:22 PM, Supun Kamburugamuva su...@wso2.com wrote: !ENTRY org.eclipse.equinox.p2.director.app 4 0 2011-03-07 12:20:46.825 !MESSAGE The installable unit

Re: [Carbon-dev] 3.2.0 Testing

Hi Hasini, Can you please let Pavithra know the fix.. she can start testing with current build it self by changing her user-mgt.xml.. Thanks regards, -Prabath On Tue, Mar 8, 2011 at 9:31 AM, Hasini Gunasinghe has...@wso2.com wrote: On Tue, Mar 8, 2011 at 9:05 AM, Hasini Gunasinghe

Re: [Carbon-dev] LDAP integration to Carbon core

In the case of Stratos - we do not need to have the embedded LDAP - but it will be a separate LDAP server. We need to test the OU based tenant isolation we did with LDAP in Stratos.. Thanks regards, -Prabath On Sun, Mar 6, 2011 at 2:56 PM, Hasini Gunasinghe has...@wso2.com wrote: On Sun,

Re: [Carbon-dev] User based authorization is depreciated in AuthorizationManager in carbon core

User based authorization means - ability to assign a particular user a set of permission. We have deprecated this support with role based access control. Every user belongs to a role and user inherits permissions from the group he belongs to. Thanks regards, -Prabath On Fri, Mar 4, 2011 at

Re: [Carbon-dev] Store some encrypted data in GREG

On Mon, Feb 28, 2011 at 10:05 AM, Rajika Kumarasiri raj...@wso2.com wrote: I need to store some passwords in GREG. Is there a way to achieve this ? I guess anything that needs to be stored in GREG securely - need to declare it's media type accordingly and should be handled via a registry

Re: [Carbon-dev] 27th Feb ESB snapshot build fails due to DB error

Hi Anjana, Can you please have a look.. As per Sumedha - it seems like a DB issue... Also this still works fine in the local machine.. Thanks regards, -Prabath On Thu, Mar 3, 2011 at 4:58 PM, Charitha Kankanamge chari...@wso2.comwrote: Can someone fix this issue ASAP please? We are unable

[Carbon-dev] WSRealmBuilder API changes..

I have a client out side the Carbon - which uses following API UserRealm realm = WSRealmBuilder.createWSRealm(serverUrl, cookie, configContext); But this code doesn't work with the current trunk - and the API been changed.. Can you please suggest how should I replace the above..? -- Thanks

Re: [Carbon-dev] Product profile related build issues in the trunk...

. On Wednesday, March 2, 2011, Prabath Siriwardana There seems to be issues while building from product profiles.. Appreciate a lot if each product team make sure that product profiles work in a clean build.. -- Thanks Regards, Prabath http://blog.facilelogin.com

Re: [Carbon-dev] Store some encrypted data in GREG

On Thu, Mar 3, 2011 at 4:09 PM, Paul Fremantle p...@wso2.com wrote: Actually, I think the secure vault is ok as-is for this use. I'm also wondering if it would be better to use Client certs for this? In this scenario CSG Agent -- ESB Server - so if we are going to use client certs [Mutual

Re: [Carbon-dev] WSRealmBuilder API changes..

, dimuthu On Fri, Mar 4, 2011 at 8:50 AM, Prabath Siriwardana prab...@wso2.comwrote: I have a client out side the Carbon - which uses following API UserRealm realm = WSRealmBuilder.createWSRealm(serverUrl, cookie, configContext); But this code doesn't work with the current trunk - and the API

Re: [Carbon-dev] WSRealmBuilder API changes..

it to get the configuration context. tx, dimuthu On Fri, Mar 4, 2011 at 8:50 AM, Prabath Siriwardana prab...@wso2.com wrote: I have a client out side the Carbon - which uses following API UserRealm realm = WSRealmBuilder.createWSRealm(serverUrl, cookie, configContext); But this code doesn't work

Re: [Carbon-dev] 27th Feb ESB snapshot build fails due to DB error

). Therefore I triggered a new build in the builder machine WITHOUT TESTS (otherwise the QA guys wont get a pack for weeks to test, due to the test failures we are having at the moment). Will see the outcome of this build. Thanks, AmilaM. On Thu, Mar 3, 2011 at 5:06 PM, Prabath Siriwardana prab

Re: [Carbon-dev] XACML 2.0 Conformance Tests

On Wed, Mar 2, 2011 at 7:06 PM, Paul Fremantle p...@wso2.com wrote: IS includes a full XACML interpreter. Paul On 2 March 2011 12:30, Brad Cox bradj...@gmail.com wrote: Thanks Paul. That was our intention when we had the XACML running as a mediator. But FYI documentation problems stymied

Re: [Carbon-dev] Error logs from ApacheDS component

the latest code of user-core(where I do not get this). So I will get a complete update from trunk and check this. On Tue, Mar 1, 2011 at 6:51 PM, Prabath Siriwardana prab...@wso2.comwrote: Hi Hasini, Can you please have a look.. Login to the console and click on some menu items.. [from

Re: [Carbon-dev] XACML 2.0 Conformance Tests

Kankanamge chari...@wso2.comwrote: Hi Prabath, This will be included in IS admin test framework which will be commenced soon. Regards Charitha On Tue, Mar 1, 2011 at 9:47 AM, Prabath Siriwardana prab...@wso2.comwrote: Great..! Also I guess we can easily automate these tests

[Carbon-dev] Deprecating ADMIN_LOGGED_IN and ADMIN_USERNAME from ServerConstants

How about the $subject..? This creates lots of confusion.. How about replacing those with USER_LOGGED_IN and LOGGED_IN_USERNAME ? -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list

[Carbon-dev] Product profile related build issues in the trunk...

There seems to be issues while building from product profiles.. Appreciate a lot if each product team make sure that product profiles work in a clean build.. -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev

Re: [Carbon-dev] 27th Feb ESB snapshot build fails due to DB error

I did a build from a complete fresh checkout - works fine - tested with IS.. Thanks regards, -Prabath On Mon, Feb 28, 2011 at 8:32 PM, Sumedha Rubasinghe sume...@wso2.comwrote: Let me check n get back. /sumedha On Mon, Feb 28, 2011 at 8:03 PM, Pavithra Madurangi pavit...@wso2.comwrote:

[Carbon-dev] ESB startup error

From the latest trunk... [2011-03-02 12:21:46,928] ERROR - Axis2ServiceRegistry Error building service from bundle : Symbolic Name: org.wso2.carbon.event.admin,Bundle Version: 3.2.0.SNAPSHOT, ID: 143 java.lang.NoClassDefFoundError: [Lorg/wso2/carbon/qpid/commons/SubscriptionDetails; at

Re: [Carbon-dev] ESB startup error

, 2011 at 12:23 PM, Prabath Siriwardana prab...@wso2.comwrote: From the latest trunk... [2011-03-02 12:21:46,928] ERROR - Axis2ServiceRegistry Error building service from bundle : Symbolic Name: org.wso2.carbon.event.admin,Bundle Version: 3.2.0.SNAPSHOT, ID: 143 java.lang.NoClassDefFoundError

[Carbon-dev] XACML 2.0 Conformance Tests

Hi Charitha, Please add [1] to the IS test cases... -- Thanks Regards, Prabath [1]: http://www.oasis-open.org/committees/download.php/14846/xacml2.0-ct-v.0.4.zip http://www.oasis-open.org/committees/download.php/14846/xacml2.0-ct-v.0.4.zip [2]: https://wso2.org/jira/browse/CARBON-6861

Re: [Carbon-dev] XACML 2.0 Conformance Tests

, -Prabath On Tue, Mar 1, 2011 at 9:43 AM, Pavithra Madurangi pavit...@wso2.comwrote: Hi Prabath, Added them to IS test cases. Regards, Pavithra On Mon, Feb 28, 2011 at 10:33 PM, Prabath Siriwardana prab...@wso2.comwrote: Hi Charitha, Please add [1] to the IS test cases... -- Thanks

Re: [Carbon-dev] XACML 2.0 Conformance Tests

at 9:47 AM, Prabath Siriwardana prab...@wso2.comwrote: Great..! Also I guess we can easily automate these tests. The confirmation test suite comes with a set of predefined requests and responses in XML. IS XACML engine has an admin service API which accepts the requests and returns back

Re: [Carbon-dev] Kerberos based security scenario

On Fri, Feb 25, 2011 at 1:39 PM, Amila Jayasekara ami...@wso2.com wrote: On Fri, Feb 25, 2011 at 12:37 PM, Prabath Siriwardana prab...@wso2.com wrote: In fact the client principal is available for the service end - that is how we do XACML authorization based on the client principal.. How

Re: [Carbon-dev] Kerberos based security scenario

Currently - the JGSS API reads these configuration files as system properties.. So we would be able to setup a single KDC. We need to invest some time on this to find out a ways of doing this with out system properties.. Same issues exists there when a tenant - for example wants to talk to an

Re: [Carbon-dev] Kerberos based security scenario

, Feb 25, 2011 at 1:11 AM, Prabath Siriwardana prab...@wso2.comwrote: Currently - the JGSS API reads these configuration files as system properties.. So we would be able to setup a single KDC. We need to invest some time on this to find out a ways of doing this with out system properties.. Same

Re: [Carbon-dev] Making apacheds default user store of all products

+1 for making it part of the core... Thanks regards, -Prabath On Wed, Feb 23, 2011 at 3:02 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, In a chat with Prabath, i got to know that we are planning to make apacheds based embedded LDAP server as default user store for all our products.

Re: [Carbon-dev] Possible solutions to restrict access to service operations from specific users

Hi Paul, Mostly the complexity of XACML policy lies on - because of the difficulty in defining the policy.. Asela has developed a UI wizard - which includes a basic and advanced - two wizards to define a XACML policy.. So I guess this would make it easy.. Also - we are planning to have

Re: [Carbon-dev] Possible solutions to restrict access to service operations from specific users

On Wed, Feb 23, 2011 at 5:38 PM, Amila Suriarachchi am...@wso2.com wrote: On Wed, Feb 23, 2011 at 4:50 PM, Prabath Siriwardana prab...@wso2.comwrote: Hi Paul, Mostly the complexity of XACML policy lies on - because of the difficulty in defining the policy.. Asela has developed a UI

Re: [Carbon-dev] HmacSHA256 algorithm based signature generation issue with SQS authentication handler

Please have a look at the getHmac() method in IdentityUtil [components/identity/org.wso2.carbon.identity.core] Thanks regards, -Prabath On Wed, Feb 23, 2011 at 2:50 PM, Manjula Rathnayake manju...@wso2.comwrote: Hi all, I am trying to generate the signature with HmacSHA256 algorithm for SQS

Re: [Carbon-dev] XACML request/response inside IS.

Hi Jorge; We are logging the XACML request/response with debug log level - in the trunk - would be available with the March release.. Also we have done lot improvement to XACML PAP - by introducing a UI editor - which come as two versions, basic and advance - this functionality is also available

[Carbon-dev] Can we add a registry media type/handler for encrypted content...

There are cases we add content to the registry encrypted.. For example key store passwords + BAM server passwords... These encryption logic is handled separately.. Shall we introduce a registry handler to handle this..? -- Thanks Regards, Prabath http://blog.facilelogin.com

Re: [Carbon-dev] ESB samples need a diagram each

On Sun, Feb 20, 2011 at 8:18 AM, Amila Suriarachchi am...@wso2.com wrote: And also I would like to see a proxy service is always as a web service. Then it should have a wsdl and client code should written by generating the code with that. Not quite I guess.. we should not couple a proxy

Re: [Carbon-dev] bcprov JARs

bcprov was required to be in CARBON_HOME/lib in 2.0.x.. This ships with wss4j bundle - and I guess we can remove this from .sh/.bat files. Sameera, please confirm... Thanks regards, -Prabath On Wed, Feb 16, 2011 at 1:48 PM, Afkham Azeez az...@wso2.com wrote: Security folks, Do we need these

Re: [Carbon-dev] Required Claims in AxSchema

+1 - It's a configuration... Thanks regards, -Prabath On Wed, Feb 16, 2011 at 7:41 PM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi, In the http://axschema.org; dialect following claims are marked as Required / ClaimURIhttp://axschema.org/namePerson/first/ClaimURI

[Carbon-dev] Multi-factor Authentication for the SAML2 IdP

How about doing the $subject ? We currently have it for OpenID Provider - based on information cards and XMPP. -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org

[Carbon-dev] Failed to build products from the latest carbon trunk

I was able to build all orbit/core/components - but failed while building IS product from carbon/products level. [INFO] Configured Artifact: org.wso2.carbon:wso2-p2-agent:?:zip [INFO] [ERROR] BUILD ERROR [INFO]

Re: [Carbon-dev] Failed to build products from the latest carbon trunk

products root pom has the property wso2carbon.version - while the modules/p2-profile-gen/pom.xml has carbon.version. I got this working locally by adding the version to the root pom.. - not committed.. Thanks regards, -Prabath On Sun, Feb 13, 2011 at 9:19 AM, Prabath Siriwardana prab...@wso2

[Carbon-dev] Fwd: [Carbon-commits] [Carbon-Core] svn commit r86776 - trunk/carbon/core/distribution/carbon-home/bin

Hi KasunW, How about the .bat file? Thanks regards, -Prabath -- Forwarded message -- From: kas...@wso2.com Date: Sat, Feb 5, 2011 at 12:48 PM Subject: [Carbon-commits] [Carbon-Core] svn commit r86776 - trunk/carbon/core/distribution/carbon-home/bin To:

Re: [Carbon-dev] Fwd: [Carbon-commits] [Carbon-Core] svn commit r86776 - trunk/carbon/core/distribution/carbon-home/bin

On Mon, Feb 7, 2011 at 12:52 PM, Kasun Weranga kas...@wso2.com wrote: On Mon, Feb 7, 2011 at 12:18 PM, Prabath Siriwardana prab...@wso2.com wrote: Hi KasunW, How about the .bat file? I didn't commit it, because I didn't test it in windows. (I am working on linux). After testing, I'll

Re: [Carbon-dev] Authz Manager - How to check if an action is denied?

On Sat, Feb 5, 2011 at 7:58 AM, Afkham Azeez az...@wso2.com wrote: Prabath, in XACML, as a best practice, we've been putting a deny Rule at the end of most policies. But what happens if that is not declared? What does the Sun XACML engine return? NotApplicable Thanks regards, -Prabath

Re: [Carbon-dev] Carbon 3.2.0 - Chunk -1 Release

Release managers of each product please take the ownership of maintaining the builds.. Thanks in advance... Thanks regards, -Prabath On Wed, Feb 2, 2011 at 10:50 AM, Samisa Abeysinghe sam...@wso2.com wrote: On Wed, Feb 2, 2011 at 9:41 AM, Charitha Kankanamge chari...@wso2.com wrote: Hi,

[Carbon-dev] Carbon 3.2.0 - Chunk -1 Release

Hi, I guess we are planning to have Carbon, AS, ESB, GReg and IS as the chunk - 1 product releases... Can we have someone from each product to act as the release manager of each... -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com

Re: [Carbon-dev] Kudos: WS-Discovery Discovery UI implementation

On Fri, Jan 28, 2011 at 1:36 AM, Afkham Azeez az...@wso2.com wrote: Hiranya et. al, you guys have done a tremendous job in making this work without any issues out of the box, and the UI is also very intuitive. I could publish the endpoints to G-Reg, discover them from the ESB without any

Re: [Carbon-dev] Kudos: Entitlement mediator UI + XACML policy editor

On Fri, Jan 28, 2011 at 8:34 PM, Afkham Azeez az...@wso2.com wrote: XACML policy based access control for webapps would make a very compelling story IMO. This would be one of the major edges we would have over regular Tomcat. +1 . This is available with the current release - will blog on that.

Re: [Carbon-dev] Kudos: Entitlement mediator UI + XACML policy editor

On Sat, Jan 29, 2011 at 10:46 AM, Amila Suriarachchi am...@wso2.com wrote: On Fri, Jan 28, 2011 at 8:07 PM, Afkham Azeez az...@wso2.com wrote: The above combined with the samples from Prabath's blog [1] make is very easy for anybody to configure entitlement from the ESB. While there are some

Re: [Carbon-dev] Ability to block Admin Service WSDL from Carbon Server

On Tue, Jan 25, 2011 at 4:54 PM, Amila Suriarachchi am...@wso2.com wrote: On Tue, Jan 25, 2011 at 3:38 PM, Heshan Suriyaarachchi hes...@wso2.comwrote: Hi Devs, Currently there isn't a way provided by the Carbon Server to block Admin Service WSDLs to outside parties. I am looking at a way

Re: [Carbon-dev] Requesting help in identifying the cause for an axis2 data-binding exception

This problem seems to be in the POJO side. But on the other hand I am not sure whether it is correct to have a ClamMapping[] inside the ClaimMappingDTO. ClaimMappingDTO is a container [or DTO] for a set of claim mappings + dialect url. So the structure is correct.. I would rather rename

Re: [Carbon-dev] NPE when trying to log into the Carbon core UI

I did an svn up of all [around 5 PM] and built the trunk - and could login to IS without any issue... Thanks regards, -Prabath On Mon, Jan 24, 2011 at 4:19 PM, Isuru Suriarachchi is...@wso2.com wrote: On Mon, Jan 24, 2011 at 3:55 PM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi, On

Re: [Carbon-dev] Why don't we include JSON message builder / formatter with Carbon by default...

not available there... Thanks regards, -Prabath Thanks, ~Isuru On Mon, Jan 24, 2011 at 10:12 PM, Prabath Siriwardana prab...@wso2.com wrote: $subject... -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon

Re: [Carbon-dev] mediation only works when SOAP tracer is on - ESB 3.0.1

Please log the full message with SOAP UI on and with out it - just before the SEND and see there is a difference... Thanks regards, -Prabath On Thu, Jan 20, 2011 at 12:27 PM, Tharindu Mathew thari...@wso2.com wrote: On Thu, Jan 20, 2011 at 10:54 AM, Sumedha Rubasinghe sume...@wso2.com

Re: [Carbon-dev] Restricting access to service metadata (WSDL, schema, policy)

+1 This is a very useful feature Thanks regards, -Prabath On Mon, Jan 10, 2011 at 5:10 PM, Afkham Azeez az...@wso2.com wrote: As per https://issues.apache.org/jira/browse/AXIS2-3316 I have implemented this functionality where you can add the parameter

Re: [Carbon-dev] Restricting access to service metadata (WSDL, schema, policy)

On Mon, Jan 10, 2011 at 7:44 PM, Amila Suriarachchi am...@wso2.com wrote: hi, First I think just restricting access to a service meta data won't make any thing secure. But - it makes things harder - specially in the case where a security policy being attached.. One can argue that this

Re: [Carbon-dev] error in generate a client authentication admin service

Please try the wsdl available at [1]. Thanks regards, -Prabath [1]: https://svn.wso2.org/repos/wso2/trunk/carbon/core/org.wso2.carbon.authenticator.proxy/src/main/resources/AuthenticationAdmin.wsdl On Mon, Jan 10, 2011 at 8:09 PM, Jorge Infante Osorio jorg...@uci.cuwrote: Hi all. I try it

Re: [Carbon-dev] Restricting access to service metadata (WSDL, schema, policy)

On Mon, Jan 10, 2011 at 10:19 PM, Afkham Azeez az...@wso2.com wrote: On Mon, Jan 10, 2011 at 10:01 PM, Prabath Siriwardana prab...@wso2.comwrote: On Mon, Jan 10, 2011 at 7:44 PM, Amila Suriarachchi am...@wso2.comwrote: hi, First I think just restricting access to a service meta data

Re: [Carbon-dev] Restricting access to service metadata (WSDL, schema, policy)

Also - IIRC in asmx web services by default the wsdl is accessible only from the localhost.. Thanks regards, -Prabath On Mon, Jan 10, 2011 at 10:38 PM, Afkham Azeez az...@wso2.com wrote: FYI, IIS supports something similar. e.g. webServices wsdlHelpGenerator href=helpPage.aspx/ protocols

[Carbon-dev] IS/UM/Security Hackathon week from next Monday - 17th Jan

We have all-to-gether 108 issues in this space, which is around 17% of all out standing issues and for the next week hackthon, issues been distributed as below... AmilaJ - 17 Asela - 21 DimuthuL - 7 HasiniG - 19 Prabath - 23 Thilina - 21 Appreciate a lot all your co-operation -- Thanks

Re: [Carbon-dev] 3.2.0 plans

On Mon, Jan 3, 2011 at 5:18 PM, Samisa Abeysinghe sam...@wso2.com wrote: Do we have Carbon core fixes in svn trunk, that are not there in 3.1.0? Yes.. In the user-core... Thanks regards, -Prabath We need to release 3.2.0 Carbon core first. Then Chunk 3 products. And should we not

[Carbon-dev] Carbon Orbit build fails due to Qpid depedancies

$subject Missing: -- 1) org.apache.qpid:qpid-client:jar:0.9 Try downloading the file manually from the project website. Then, install it using the command: mvn install:install-file -DgroupId=org.apache.qpid -DartifactId=qpid-client -Dversion=0.9 -Dpackaging=jar

Re: [Carbon-dev] Modifications to the current Tryit+Javascript stubs

On Wed, Dec 22, 2010 at 7:05 AM, Sameera Jayasoma same...@wso2.com wrote: On Tuesday, December 21, 2010, Ruchira Wageesha ruch...@wso2.com wrote: Hi, Support for relative schema import/includes were added into the Tryit code in the trunk. Along with this addition, I am also hoping to do

Re: [Carbon-dev] Can we fix this with Secure valut work we did?

On Wed, Dec 22, 2010 at 7:49 AM, Srinath Perera srin...@wso2.com wrote: moving to carbon dev On Wed, Dec 22, 2010 at 7:45 AM, Samisa Abeysinghe sam...@wso2.com wrote: Why are we discussing this here? Should be either Axis2 list or worst case carbon list On Wed, Dec 22, 2010 at 7:37

[Carbon-dev] Registry Checkin client.. Is the name correct..?

Sometimes the name is bit confusing.. when using Checkin client to Checkout.. WDYT? -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org

[Carbon-dev] What is the first link you click on - once you logged in to the ESB..?

Sometimes the Dashboard in the ESB is a pain - and takes a long time to render.. I guess most of us click on the service listing[?]as soon as we logged in to the ESB.. How about making that the default page...? -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com

Re: [Carbon-dev] Registry Checkin client.. Is the name correct..?

this for 4.0.0. It goes as checkin-client.sh with GReg.. Thanks regards, -Prabath Thanks, Senaka. On Tue, Dec 21, 2010 at 8:01 AM, Prabath Siriwardana prab...@wso2.comwrote: Sometimes the name is bit confusing.. when using Checkin client to Checkout.. WDYT? -- Thanks Regards, Prabath

Re: [Carbon-dev] [Builds] RC1 Builds for the Chunk1 release(Appserver, greg, bps, ms)

On Thu, Dec 9, 2010 at 6:13 PM, Charitha Kankanamge chari...@wso2.com wrote: What is the purpose of CARBON_HOME/repository/deployment/webapps directory? If it is not required we should remove it from app server binary distro since it confuses users. Please fix this [1] Thanks Charitha for

Re: [Carbon-dev] [Builds] RC1 Builds for the Chunk1 release(Appserver, greg, bps, ms)

Hi Nirodha, RC2s are out - please verify on that... Thanks regards, -Prabath On Fri, Dec 10, 2010 at 9:17 AM, Nirodha Pramod niro...@wso2.com wrote: JIRA URL for the following issues in documentation release notes: https://wso2.org/jira/browse/MASHUP-1366 Regards, Nirodha. On Thu, Dec

[Carbon-dev] Adding an ESB with a webcontext as a monitored server fails in BAM 1.2.0

Both ESB and BAM running on different contexts.. Error : Nested Exception:- javax.xml.stream.XMLStreamException: DS Fault Message: Error in opening DBMS connection. Source Data Service:- Name: BAMConfigurationDS Location:

Re: [Carbon-dev] Adding an ESB with a webcontext as a monitored server fails in BAM 1.2.0

by default from BAM-b009 build. Thanks, Krishantha. On Fri, Dec 10, 2010 at 9:42 AM, Prabath Siriwardana prab...@wso2.com wrote: Both ESB and BAM running on different contexts.. Error : Nested Exception:- javax.xml.stream.XMLStreamException: DS Fault Message: Error in opening DBMS

Re: [Carbon-dev] Adding an ESB with a webcontext as a monitored server fails in BAM 1.2.0

Samaraweera krishan...@wso2.com wrote: Hi Prabath, What is the BAM build you are using? .In BAM-b008 build you have to create h2 data source manually. But h2 data source is available by default from BAM-b009 build. Thanks, Krishantha. On Fri, Dec 10, 2010 at 9:42 AM, Prabath Siriwardana

[Carbon-dev] BAM monitored services a hardly bound to the servicePath services

servicePath is configurable - and in a production setup we would recommend to get rid of the default one - specially if the instance is deployed in a DMZ.. I guess when we take the server urls - we should take up to the servicePath... May be I am missing something - please let me know if this a

Re: [Carbon-dev] BAM monitored services a hardly bound to the servicePath services

, 2010 at 12:35 PM, Prabath Siriwardana prab...@wso2.com wrote: servicePath is configurable - and in a production setup we would recommend to get rid of the default one - specially if the instance is deployed in a DMZ.. I guess when we take the server urls - we should take up to the servicePath

Re: [Carbon-dev] [Builds] RC1 Builds for the Chunk1 release(Appserver, greg, bps, ms)

Thanks Sameera.. No commits to the 3.1.0 branch please... till its notified in this list.. Also, Charitha please report any L1 issues to this thread with a JIRA reference - so we can immediately attend.. Thanks regards, -Prabath On Thu, Dec 9, 2010 at 3:58 AM, Sameera Jayasoma

Re: [Carbon-dev] WSO2 Carbon Continuous Build has FAILED

Fixed.. Thanks regards, -Prabath On Thu, Dec 9, 2010 at 6:26 AM, WSO2 Builder buil...@wso2.org wrote: [INFO] Not compiling test sources [INFO] [surefire:test] [INFO] Tests are skipped. [INFO] [jar:jar] [INFO] Building jar:

Re: [Carbon-dev] [Builds] RC1 Builds for the Chunk1 release(Appserver, greg, bps, ms)

through docs but it would be great if someone else also start going through all the docs and start fixing issues. For example [1] will take some time to take screen shots etc.. [1]https://wso2.org/jira/browse/CARBON-8347 /Charitha On Thu, Dec 9, 2010 at 4:33 AM, Prabath Siriwardana prab

Re: [Carbon-dev] Please remove /target directories committed to 3.1.0 branch with dashboard

On Thu, Dec 9, 2010 at 11:40 AM, Nuwan Bandara nu...@wso2.com wrote: Hi On Thu, Dec 9, 2010 at 5:08 AM, Prabath Siriwardana prab...@wso2.com wrote: $subject dashboard/org.wso2.carbon.dashboard.mgt.gadgetrepo.ui/3.1.1/target dashboard/org.wso2.carbon.dashboard.mgt.oauth.ui/3.1.1/target

Re: [Carbon-dev] AppServer - Open L1 issues

On Tue, Dec 7, 2010 at 7:33 PM, Sameera Jayasoma same...@wso2.com wrote: https://wso2.org/jira/browse/CARBON-8286 https://wso2.org/jira/browse/CARBON-8280 - Custom faults are not secured Fixed this issue. But didn't commit - attached the patch the JIRA it self.

  1   2   >