Questions tagged [wso2is]

WSO2 Identity Server enables enterprise architects and developers to improve customer experience by reducing identity provisioning time, guaranteeing secure online interactions, and delivering a reduced single sign-on environment.

Filter by
Sorted by
Tagged with
0votes
0answers
11views

Error in mapping multivalued role claim with user in WSO2IS using OIDC JIT Provisioning

Role mapping is not done for user created in wso2 even when the claim is passed from IDP during JIT provisioning. Receiving this response from IDP : "role" : [ "admin" ] Also ...
user avatar
  • 1
0votes
0answers
35views

WSO2 token generation, /oauth2/token service failing after 20th request been hit

I am using WSO2 for token generation. By using this console: https://localhost:9443/carbon/admin/login.jsp I am calling http://localhost:9763**/oauth2/token** service by passing required parameters &...
user avatar
  • 1
0votes
1answer
36views

WSO2 IdentitiServer 5.10.0 :How to integrate route mobile SMS Provider with Wso2 Identity server MFA

We have integrated WSO2 Identity Server Multifactor Authentication with our web application, and tested the SMS Otp Using Nexmo(Vonage) free account. Now we wanted to integrate route mobile sms ...
user avatar
0votes
0answers
19views

WSO2 5.3.0 IWA - not working with Java 1.8 or later version

I am trying to enable IWA authentication with java 1.7 its working fine but with the later version, it's giving NTLM token not found error. Any idea?
user avatar
  • 1,000
0votes
0answers
38views

WSO2 Identity Server JWT - How to generate the token with a EXP in seconds?

My legacy wso2 (version 5.1.0) is generating tokens with the EXP field in milliseconds-precision. This makes it quite unsuited for a integration im working on. How can I make it be generated with ...
user avatar
  • 9,571
0votes
1answer
82views

WSO2 Identity Server: update user fails

Im trying to update a user i created. It says Error while updating attributes of user: vaisakh@abcd.com I've followed these steps before https://is.docs.wso2.com/en/latest/learn/using-email-address-as-...
user avatar
0votes
1answer
18views

Is it possible to bind api consumers to certain ip address so that they can invoke an api their own ip address in wso2 apim 4.0.0?

I am exploring wso2 apim 4.0.0. I would like to find out if it is possible to bind a user to certain ip address so that it can invoke an api only from specified ip address. For instance user1 one is ...
user avatar
  • 120
0votes
0answers
21views

I'm unable to login into Wso2 APIM

I'm unable login into Wso2 APIM and showing invalid login details but yesterday it was working fine and able to login. Apim version: 3.2.0. Identity server wso2 is-km: 5.10.0 I have not changed any of ...
user avatar
0votes
1answer
51views

WSO2 Identity Server: Searching user by their username api not working

Is there any API available to fetch the details of a user using their username only? I've followed this https://is.docs.wso2.com/en/latest/develop/scim2-rest-apis/#/Users%20Endpoint/getUsersByPost But ...
user avatar
0votes
1answer
18views

Do we need to change app_password property if the authentication endpoint is hosted within the product as per the product-level-security-guidelines/

This is a general question regarding whether we need to change app_password property if the authentication endpoint is hosted within the product as mentioned in the https://is.docs.wso2.com/en/5.11.0/...
user avatar
0votes
0answers
31views

WSO2 IS - Multiple Web Apis against a Service Provider

I want to have multiple Web Apis authorized against my Service Provider using the client_credentials grant. Am I missing something on the AddJwtBearer() configuration? Version: WSO2 IS 11.0.0
user avatar
  • 1,058
0votes
0answers
56views

Not able to login to WSO2 Api Manager's Publisher/ Devportal WUI in WSO2 Identity Server using SAML2

While being new to the WSO2 stack, we are dealing with a few challenges. One is to achieve a successful login to the Publisher/ Devportal via the Identity Server. TID: [-1234] [] [2022-02-25 12:55:18,...
user avatar
0votes
0answers
30views

WSO2 custom authenticator for Outh2 token api

I want to implement a custom authenticator for /oauth2/token, Where along with grant_type, username, password, and scope will pass one more parameter OTP and that will be validated with custom logic. ...
user avatar
  • 1,000
0votes
0answers
20views

How to resolve conflicts between wso2 Is and api-m after setup with identity server keymanager 5.11.0

please respond to my query.... after setup with wso2 identity server keymanager 5.11 between IS and API-M 4.0, I couldn't access /devportal with default role "internal/everyone", also if I ...
user avatar
0votes
2answers
40views

How to use the @ character as a password in WSO2 API Manager 4.0.0?

I am currently using the latest version of WSO2 APIM(4.0.0). I tried connecting to the ldap as a readonly userstore as per the documentation, but once I startup the server a JMS error occurs possibly ...
user avatar
0votes
1answer
25views

WSO2 Integration Studio - Can't reload the diagram

When I want to import and load a project in Integration Studio 8.0.1 and double-click on src/main/synapse-config/api/ApiName.xml (after import) it generates a blank page on the Design tab, and in ...
user avatar
  • 848
0votes
0answers
24views

Err for Logging in to SimpleSAMLphp

I did all steps as this guide : https://docs.wso2.com/display/IS540/Logging+in+to+SimpleSAMLphp+using+Identity+Server my WSO2 IS version is : "wso2is-5.12.0-alpha9" when I clicked the button ...
user avatar
-1votes
2answers
50views

wso2 access token validation API call from POSTMAN fails

I found that we can make this call curl -k -u admin:admin -H 'Content-Type: application/x-www-form-urlencoded' -X POST --data 'token=fbc4e794-23db-3394-b1e5-f2c3e511d01f' https://localhost:9443/oauth2/...
user avatar
0votes
0answers
31views

wso2 is (container linux) Uncaught (in promise) Invalid id_token in the token response /myaccount

When you install wso2 is in its version 5.11 through docker in a virtual machine of azure S.O oracle linux. I am getting the following error Uncaught (in promise) Invalid id_token in the token ...
user avatar
0votes
0answers
30views

I get err tips: Error 405 - Method Not Allowed

I am did this testing as following: https://docs.wso2.com/display/IS540/Logging+in+to+SimpleSAMLphp+using+Identity+Server and I did all step . I clicked "wso2-sp" button: enter image ...
user avatar
0votes
1answer
28views

WSO2 5.11 Console trying to reach localhost instead server

I have WSO2 IS 5.11 installed on a server under https://server1.wso2.com. When Im trying to reach new console app Im getting redirected to: https://localhost:9443/oauth2/token/.well-known/openid-...
user avatar
0votes
1answer
37views

How Spring SAML Works if assertion expires

I have integrated wso2 IS 5.11 with Spring SAML. After login the SAML response contains 5 minutes of assertion expiry. But if the same user uses the application for more than 5 minutes. There is no ...
user avatar
  • 52
0votes
1answer
52views

SLF4J: Class path contains multiple SLF4J bindings during WSO2 IS startup

One of my WSO2 IS (Identity Server) went poof due to physical host error, and when I want to bring back up the IS service, it just hangs and won't start up right after these warning message: SLF4J: ...
user avatar
  • 81
0votes
1answer
27views

how change secured-="true" in identity.xml?

I want to change secured= true in following lines in identity.xml: <Resource context="(.*)/authenticationendpoint(.*)" secured="false" http-method="all"/> I added ...
user avatar
0votes
1answer
21views

WSO2 identity server - question for mfa for RDP

we are new to identity management and testing wso2 is there a plugin or way to use WSo2 in premise idenity server and MFA for various RDP servers logins?
user avatar
0votes
0answers
40views

SCIM2 Get Users Slow response time

I'm working on a project where regular users and wso2is super admin are on one and only tenant. Our WSO2IS deals with around 5,000 users and has somwhere around 10,000 applications (service providers)....
user avatar
0votes
1answer
69views

WSO2 IS - Blazor SPA 'Invalid request client_id not found in request as parameter.'

When trying to login as the default admin user against WSO2 Identity Server from my Blazor SPA I get the following error: but the authentication succeeds and the user is logged in. The settings in my ...
user avatar
  • 1,058
0votes
1answer
24views

WSO2 IS serverOrigin is not used from config

I'm new to WSO2 IS. wso2 runs in docker: serverOrigin - https://localhost:9443 Build an SPA (vuejs) . script below By login/signIn the serverOrigin is not being used. Instead I’m forwarded to https://...
user avatar
  • 339
0votes
1answer
32views

how to Enable Debug logs in All components in WSO2 IS?

how to Enable Debug logs in All components in WSO2 IS? I want to track code running. Could you tell me what config I need add ? Thanks henry
user avatar
0votes
0answers
27views

WS02 not logging out

Good morning! I have been looking to get WS02 and Wordpress to work together. We setup a test area and were able to login as expected. However, upon selecting to logout, we are redirected back to the ...
user avatar
0votes
0answers
38views

WSO2 APIM 3.2 - AccessToken Cache doesn't work when using JWT Access Token

I'm using WSO2 AM 3.2 in a distributed environment (Publisher, DevPortal, KM , Gateway & Traffic Manager on separate VMs). I did a Migration from a 2.6 platform , hence all my migrated ...
user avatar
0votes
2answers
66views

Intermittent failure: WSO2-IS 5.6 fails to send email with error - "Event dropped at Output Adapter... Error in message format, null "

App: WSO2-IS 5.6 I am getting the following error intermittently when trying to send email on user registration/pwd reset. Retrying later for the same email account works fine. Lack of detail in error ...
user avatar
  • 11
0votes
2answers
67views

WSO2 IS - SCIM2 Invalid Token after PATCH

I am trying to figure out if the following behavior is the expected. In my case, I am logged in as a user with username: testuser I make a PATCH request from my Blazor SPA to the following URL https://...
user avatar
  • 1,058
0votes
1answer
43views

WSO2 IS 5.10.0 - Add new language in User Portal Overview

When I log in "user-portal" of WSO2 Identity Server (the url is "https://localhost:9443/user-portal/overview"), I can see four options to change the language (english, portuguese, ...
user avatar
0votes
1answer
51views

Initial Startup of Wso2 Identity 5.10 is giving error: Admin user can not be assigned to Admin role

I've reviewed a lot of answers to similar questions but cannot find this one. On startup I get: [2022-01-15 12:56:48,823] [] INFO {org.ops4j.pax.logging.spi.support.EventAdminConfigurationNotifier} -...
user avatar
1vote
1answer
66views

How to set TLS 1.1 in WSO2 Identity Server 5.10.1?

I want to send mails to reset password in WSO2 Identity Server. The mail account server to send mails uses the 1.1 version of the TLS protocol. How can I set TLS 1.1 for mail transport in the file ...
user avatar
0votes
0answers
27views

How do can I concatenate two claims during SAML2 authentication

We are currently using WSO2 IS 5.7.4 and we have setup NeoEd as a SAML2 Service provider, the issue we are experiencing is that NeoEd does not allow for duplicate for usernames as they only have one ...
user avatar
0votes
0answers
59views

wso2-is-5.11.0 callback url & authentication issue getting Could not handle request: /carbon/admin/login_action.jsp java.lang.NullPointerException

I couldn't run the /carbon, /myaccount, /console, URLs, Don't have idea to resolve this issue. Error logs URLs not running in the browser Error logs after urls runs in browser > [2022-01-05 14:07:...
user avatar
-1votes
1answer
88views

can not open https://localhost:9443/carbon/

I added [admin_console.authenticator.saml_sso_authenticator] enable=true into deployment.toml. I can't open https://localhost:9443/carbon/, my browser always turn to about:blank#blocked. Then, I ...
user avatar
1vote
1answer
137views

WSO2 API Publisher SSO with identity Server error 403

I follow the guide https://apim.docs.wso2.com/en/latest/reference/customize-product/extending-api-manager/saml2-sso/configuring-identity-server-as-idp-for-sso/#configuring-wso2-identity-server-as-a-...
user avatar
  • 1,504
-1votes
1answer
102views

Reset password by using cURL restAPIs in wso2 IS

In wso2-IS 5.11, trying Update Password Operation through cURL restAPI command. I got reset password mail notification for below curl request, $ curl -X POST -k -H "Authorization: Basic YWRxxxx=&...
user avatar
-1votes
1answer
151views

CVE-2021-45105 wso2 vulnerability

Is there any fix for the CVE-2021-45105 log4j vulnerability for wso2 products? Apache Log4j Denial of Service (DOS) Vulnerability (Log4Shell) The one they shared in below link is for a different CVE. ...
user avatar
0votes
1answer
48views

can NOT modified authenticators.xml to enable SSO

I got one err: Error 405 -Method Not Allowed, so, I want to enable SSO for IS, then I modified <IS_HOME>/repository/conf/security/authenticators.xml. but, after I restarted IS server, ...
user avatar
0votes
0answers
24views

WSO2 apim server responds successfully even a user doesn't have corresponding role to an api

I followed the steps mentioned in the below WSO2 documentation to set up WSO2 Identity Server as a Key Manager for Api Manager https://apim.docs.wso2.com/en/latest/install-and-setup/setup/distributed-...
user avatar
  • 120
0votes
0answers
25views

WSO2 API MANAGER. You have partially-created keys. Please click `Clean Up` button and try again

I want to generate a token to the app just created in devportal. It had been working until I updated wso2 apim 4.0.0 and wso2 identity server 5.11. They are installed on separate servers and IS is ...
user avatar
  • 120
-2votes
3answers
584views

WSO2IS and CVE-2021-44228

Is WSO2IS impacted by CVE-2021-44228 ? If so, could we an update on https://docs.wso2.com/display/Security/2021+Advisories (on what versions are affected, and what the recommend remediation is)?
user avatar
  • 174
0votes
0answers
19views

Is Ingress-Nginx able to send unescape header to backend?

I'm using Nginx as my Ingress Controller in a Kubernetes deployment where WSO2 Identity Server 5.11 is at the backend. I have a requirement of authenticating clients against the backend using a X509 ...
user avatar
0votes
0answers
26views

WSO2 Identity Server - auth from readonly LDAP and claim from database

I have a readonly LDAP connection in my WSO2 IS 5.11 and I would to obtain a set of additional claims from external datasource. I have to create a CustomClaimHandler or there is another way?
user avatar
0votes
0answers
15views

How to verify whether the the Response Type Handler extension is working as expected

We have been using wso2 IS 5.7 and are no migrating to 5.11 One of the extensions used are of Response Type Handler in which we have extended the classes TokenResponseTypeHandler and ...
user avatar
0votes
0answers
24views

Return only mapped roles in federated auth WSO2

I have a federated authentication with Azure AD where I have some role mappings. From AzureAD I'm getting 30 roles, however I only mapped 15 in WSO2 and I would like to only have those 15 in the token....
user avatar

15 30 50 per page
1
2 3 4 5
55