-
Notifications
You must be signed in to change notification settings - Fork 1
Developer Guide
isuri97 edited this page Aug 7, 2018
·
8 revisions
1. Adding user and user profile
- Refer below link to add user to Identity server. Link : https://docs.wso2.com/display/IS540/Configuring+Users
- After configuring user in identity server. Go to user profile and fill the relevant user information.
2. Adding Special claim attribute to user profile.
- In WSO2 management console go to claims and select list.
- Then select “http://wso2.org/claims” and go to External User ID row and click edit option. (This can be any attributed but it should be configured in the custom authenticator.)
- Edit the that field as given below in image.
- This will field will add to our user profile after configuration is done.
- Complete the user profile and add save the user details.
3. Configuring Identity provider
- For configuring identity provider in identity server refer below link. Link :https://docs.wso2.com/display/IS540/Adding+and+Configuring+an+Identity+Provider
Federated authentication.
- Under federated authentication configure our sample authenticator as shown in the figure.
Claim configuration.
- Under Basic claim configuration Define Custom Claim Dialect and in there add claim mappings and user ID claim uri as given in the figure. (This can be any claim attribute
- Finally save the Identity Provider.
4. Configuring service provider.
- For the configuring service provider in WSO2 identity server follow the below link. Link : https://docs.wso2.com/display/IS540/Adding+and+Configuring+a+Service+Provider
Local and Outbound Authentication step configuration
- In here select the Advanced configuration and authentication steps given below.
- Add first step as basic authenticator and second step as the federated authenticator.
(In the figure TEST means the IDP created in above step) Claim configuration
- Configure the claims under local claim and add required claims and subject claim uri to the service provider as given below in figure.
Inbound Authentication configuration
- Configure Inbound Authentication under OAuth/OpenId connect configuration and obtain client ID as given in the figure.
- Finally save the service provider.
Use https://jwt.io/ for token decoding and read embedded values in id token.
- Web service configurations are done in Identity Provider which is created on WSO2 Management console. We can configure token endpoint, UserInfo endpoint, Username and password used to secure the web app.