Skip to main content

Posts

Showing posts from January, 2014

[WSO2 AM] APIStore User Signup as an approval process

In previous versions of WSO2 APIManager before 1.6.0, it was allowed any user who's accessible the running APIStore come and register to the app.But there will be requirement like,without allowing any user to signup by him/her self alone,first get an approve by a privileged user and then allow to complete app registration.Same requirement can be apply to application creation and subscription creation as well.To fulfill that,we have introduced workflow extension support for  WSO2 APIManager  and you can find the introductory post on this feature from my previous blog post on " workflow-extentions-with-wso2-am-160 " . From this blog-post,I'll explain how to achieve simple workflow integration with default shipped resources with  WSO2 APIManager 1.6.0 and WSO2 Business Process Server 3.1.0 with targeting "user-signup" process. Steps First download the WSO2 APIManager 1.6.0[AM] binary pack from product download page . Extract it and navigate to

Exchanging SAML2 bearer tokens with OAuth2 tokens in WSO2 API Manager

To get access to a a managed API of WSO2 API Manager,a user has to pass an oauth token.From APIM 1.5.0 onwards a user can exchange his SAML2 token to obtain an OAuth2 token.This feature will be useful,in the following use-case : Most of enterprise applications use SAML2 to engage a third-party identity provider to grant access to systems that are only authenticated against the enterprise application. These enterprise applications might need to consume OAuth-protected resources through APIs, after validating them against an OAuth2.0 authentication server. However, an enterprise application that already has a working SAML2.0 based Single Sign On infrastructure between itself and the IDP prefers to use the existing trust relationship, even if the OAuth authorization server is entirely different from the IDP. The SAML2 Bearer Assertion Profile for OAuth2.0 helps leverage this existing trust relationship by presenting the SAML2.0 token to the authorization server and exchanging it to an

Good Bye 2013 !!!

  It was really a one of best year which I was able to bring my life a step ahead.There were times very challenging,cheerful,full of happiness and even with bit of sad.But still I do really love each and every moment of passed year as I was able to get a lot of  experiences and fulfill some of my life-time dreams,which I never thought I will get a chance. The most precious opportunity I was got last year is step into my one from both ever dreamed country..FRANCE! :) We were there for around 1.5 weeks and  of course it was an official visit.But once we completed our job successfully,was able to visit my dreamed places as; Eiffel Tower,Louvre Museum and  more nice places and was able to meet really nice people from there..Merci Beaucoup ! for WSO2 to give this chance for me..  Then,not to forgot,the most challenging experience of my life ->Survive in a middle of really busy state[San Fransisco] in USA alone for one and half month! It was really a