Sep 23, 2021Terminate Active User Sessions on User Role Change Events through the WSO2 Identity SeverThe WSO2 Identity Server serves many purposes as you have seen in its docs. Yet, there are edge cases that require customization. This blog guides you how on how you can terminate active user sessions on user role change events. …Wso23 min readWso23 min read
Sep 14, 2021Quick Start Guide — SDKMANSDKMAN is a tool for managing parallel versions of Software Development Kits (SDKs) for most Unix-based systems according to its official website. It is a life-saver since you don’t have to manage versions manually. This article will guide you on how to install this tool and use it effectively. …Sdkman3 min readSdkman3 min read
Jun 27, 2020How do I connect the WS-Trust connector of WSO2 Identity Server?Strictly for IS versions 5.11.0-m25+ Why is it provided as a connector? WS-Trust functionality has been implemented a long time back in WSO2 Identity Server and it contains outdated dependencies which will not have the latest security security fixes. So because of that we have moved this as a connector to avoid exposure of those…Wso22 min readWso22 min read
Jun 27, 2020A Glimpse of the new WS-Federation implementation in WSO2 Identity ServerReason for the implementation change As the OpenSAML version of the WSO2 Identity Server was upgraded from OpenSAML2 to OpenSAML3[1], the STS implementation had to be updated to OpenSAML3 but there were a lot of complexities that we faced in doing so[2]. …Ws Federation5 min readWs Federation5 min read
Apr 15, 2020Quick Test WS-Trust with WSO2 Identity ServerAs you all know that WSO2 Identity Server uses the STS(Security Toke Service) as an implementation for WS-Trust which is capable of issuing SAML1.1 and 2.0 tokens. This API can be secured with any WS-Security mechanism. …Ws Trust3 min readWs Trust3 min read
Oct 15, 2019Setting up a SAML2 Bearer Assertion Profile for OAuth 2.0 using WSO2 IS (The HARD WAY)For an introduction of the process refer to WSO2 Documentation Page Setting up a SAML2 Bearer Assertion Profile for OAuth 2.0. At this moment in time, the latest WSO2 Identity Server release is 5.10.0 M1 and SAML2 Bearer Assertion Profile for OAuth 2.0 does not work inside Travelocity as expected…Wso2is6 min readWso2is6 min read
Oct 11, 2019Commencing migration towards the checked flag OpenSAML 3Why migrate when it works just fine? Before climbing uphill, let’s take a peek into the purpose of migrating from OpenSAML 2 to OpenSAML 3.Java6 min readJava6 min read
Aug 29, 2019Configuring Federated Authentication with SAML SSO using two WSO2 Identity ServersFederated Authentication is a mechanism that allows authentication across different enterprises in different trust domains based on a trust factor. This facilitates the user with the advantage of using the same username and password for different platforms. …Wso28 min readWso28 min read
Published inIdentity Beyond Borders·Jul 22, 2019Let’s take a dive into the shallows of SAMLFirst of all, to get things up and running, you might be wondering what SAML stands for? SAML stands for Security Assertion Markup Language which is an XML-based markup language for security assertions and one of the standards at Organization for the Advancement of Structured Information Standards (OASIS). Before moving…Single Sign On6 min readSingle Sign On6 min read
