Hi all,
I am currently working on upgrading the solr in registry indexing. with the
proposed design, we are going to deploy solr webapp in the carbon server
and use it for registry indexing and we need to allow accessing solr web
app only for admin users.
What is the best way I could follow to re
Carbon products follow a fine-grained permission based approach. So first
you should define relevant set of permissions for your webapp. Then you
should be able to enforce access control using the authentication and
authorization facilities provided by the OSGi realm service.
On Fri, Nov 14, 2014
On Sat, Nov 15, 2014 at 7:32 AM, Johann Nallathamby wrote:
> Carbon products follow a fine-grained permission based approach. So first
> you should define relevant set of permissions for your webapp. Then you
> should be able to enforce access control using the authentication and
> authorization
Thanks Johann, I will check
On Sat, Nov 15, 2014 at 7:37 AM, Johann Nallathamby wrote:
>
>
> On Sat, Nov 15, 2014 at 7:32 AM, Johann Nallathamby
> wrote:
>
>> Carbon products follow a fine-grained permission based approach. So first
>> you should define relevant set of permissions for your weba
Hi Johann,
Are we need separate Identity Server instance running as PDP for this
approach. I have gone through the AS sample [1], there we need to start IS
instance.
[1]
https://docs.wso2.com/display/AS521/Checking+the+Authorization+of+WebApp+Requests
Can we setup PDP in the product(e.g: GREG Pr
That is for fine-grained authorization with XACML. I was talking about the
role-permission based authorization we have for all our admin service stuff
which comes from user.core and is part of all the products.
On Mon, Nov 17, 2014 at 10:19 AM, Danesh Kuruppu wrote:
> Hi Johann,
>
> Are we need