Developer Guide

Jump to bottom

isuri97 edited this page Aug 7, 2018 · 8 revisions

Developer Guide

Authenticator configuration step by step

Configuring WSO2 Identity server.

1. Adding user and user profile

Refer below link to add user to Identity server. Link : https://docs.wso2.com/display/IS540/Configuring+Users
After configuring user in identity server. Go to user profile and fill the relevant user information.

2. Adding Special claim attribute to user profile.

In WSO2 management console go to claims and select list.
Then select “http://wso2.org/claims” and go to External User ID row and click edit option. (This can be any attributed but it should be configured in the custom authenticator.)
Edit the that field as given below in image.

This will field will add to our user profile after configuration is done.
Complete the user profile and add save the user details.

3. Configuring Identity provider

For configuring identity provider in identity server refer below link. Link :https://docs.wso2.com/display/IS540/Adding+and+Configuring+an+Identity+Provider

Federated authentication.

Under federated authentication configure our sample authenticator as shown in the figure.

Claim configuration.

Under Basic claim configuration Define Custom Claim Dialect and in there add claim mappings and user ID claim uri as given in the figure. (This can be any claim attribute

Finally save the Identity Provider.

4. Configuring service provider.

For the configuring service provider in WSO2 identity server follow the below link. Link : https://docs.wso2.com/display/IS540/Adding+and+Configuring+a+Service+Provider

Local and Outbound Authentication step configuration

In here select the Advanced configuration and authentication steps given below.
Add first step as basic authenticator and second step as the federated authenticator.

(In the figure TEST means the IDP created in above step) Claim configuration

Configure the claims under local claim and add required claims and subject claim uri to the service provider as given below in figure.

Inbound Authentication configuration

Configure Inbound Authentication under OAuth/OpenId connect configuration and obtain client ID as given in the figure.

Finally save the service provider.

Use https://jwt.io/ for token decoding and read embedded values in id token.

Web service configuration

Web service configurations are done in Identity Provider which is created on WSO2 Management console. We can configure token endpoint, UserInfo endpoint, Username and password used to secure the web app.