Identity Governance 101: Account Locking

This is the third post on the series about Identity Governance and today we’re looking into user account locking. Have a look on my Identity Governance 101: Popular User Stories first, to understand the big picture if you haven’t already done! Let’s dive in…

Continue reading →

Categories: Identity Federation, Identity Management, Tutorials | Tags: Identity, Identity Management, Identity Server, Security, Software, WSO2, WSO2 IS | Permalink.

Identity Governance 101: User Self Registration

In my previous post, Identity Governance 101: Popular User Stories, I talked about the basics of identity governance and most popular governance user stories in the IAM domain. Following the same topic, let’s dive deep into User Self Registration and how you can see it in action with WSO2 Identity Server.

Continue reading →

Categories: Identity Management, IS Diaries, Technology, Tips and Tricks | Tags: Governance, Identity, Identity Management, Identity Server, reCaptcha, Security, Self Registration, Self Sign up, Software, WSO2, WSO2 IS | Permalink.

Identity Governance 101: Popular User Stories

What is Identity Governance

In theory, Identity Governance refers to the policy-based centralized orchestration of user identity management and access control. In layman’s terms, this refers to managing different aspects of user accounts and how they access the resources offered. It’s believed that the concept of identity governance grew out of the Identity Governance Framework, a now-defunct project by the Liberty Group that aimed to standardize enterprise identity information usage.

Continue reading →

Categories: Identity Management | Tags: Account management, Governance, Identity, Identity Management, Passwords, Security, Software, WSO2 IS | Permalink.

Identity Verification with WSO2 Identity Server and Evident ID

Introduction

Identity Verification has been a popular concept for over a decade now, and when simply put, it’s about verifying the identity of an online user. In other words, figuring out whether the person submitting the information is actually who they claim to be or not. There are many companies in the world that offer identity verification as a service, and most businesses tend to use these services, considering the level of expertise they’ve built upon the subject over time.

Evident is a leading and award-winning Identity Verification provider in the industry that provides over 12,000 verifiable data types along with ID scans that cover over 195 countries. In this post, we’re connecting WSO2 Identity Server with Evident for external identity verification that allows you to verify your users.

Continue reading →

Categories: Customizations, Identity Management, IS Diaries, Technology, Tips and Tricks, Tutorials | Tags: Connector, Evident, EvidentID, Identity Management, Identity Verification, IDV, Integration, Verify Users, WSO2, WSO2 IS | Permalink.

Magento SAML SSO with WSO2 Identity Server

Introduction

Magento is one of the most popular open-source e-commerce systems in the world. If you run an online store through Magento, you might want to consider enabling single sign-on with WSO2 Identity Server which is a well-recognized identity and access management solution that is used by many fortune 500 companies.

Continue reading →

Categories: Identity Management, IS Diaries, Technology, Tips and Tricks, Tutorials | Tags: Magento, Magento 2, MiniOrange, SAML, Single Sign On, SSO, WSO2, WSO2 IS | Permalink.

Performance of Your Web Solution

Introduction

“Performance” is something every tech solution talks about, yet most of them have their own versions of the concept in mind. I’ve been involved with measuring the performance of the WSO2 Identity Server for more than a year now, and in this post, I’m trying to express my own understanding of the same. The field of application performance is just too big to cover in a single article. Therefore I’m just trying the scratch the surface with basic concepts and provide only a survivable understanding to you. There are plenty of resources to dive deep into the subject and you can find them very easily from the internet.

Let’s begin…

Continue reading →

Categories: IS Diaries, Technology, Tips and Tricks, Tutorials, Uncategorized | Tags: Concurrency, Latency, Performance, Response Time, Throughput, TPS, WSO2 IS | Permalink.

Updating a Custom Claim with SCIM2 in WSO2 Identity Server

This is a problem that many has come to when working with SCIM2 APIs. I think the main reason for this requirement to be a “problem” is the added complexity of the SCIM API. The target of this post to be the simplest guide on getting $subject done.

Continue reading →

Categories: Identity Management, IS Diaries, Technology, Tips and Tricks, Tutorials | Tags: Custom Claim, Extension, Identity, SCIM 2.0, WSO2, WSO2 IS | Permalink.

Designing your first REST API – Part 2

Hi all,

This is the second part of my REST API guide where I’ll be focussing on designing a simple API using SwaggerHub, explaining basic functionalities of the SwaggerHub editor and the Open API Specification. My previous article covered the basic concepts of REST APIs.

Continue reading →

Categories: IS Diaries, Technology, Tips and Tricks, Tutorials | Tags: API, OpenAPI, REST, Swagger | Permalink.

Designing your first REST API – Part 1

What’s up, folks?

WSO2 Identity Server team is quite busy these days writing REST APIs for all of its functions and old SOAP APIs. Accordingly, I myself got to write a REST API for an old SOAP service we had, and today I’m going to tell you what I learned in that effort.

This article will cover the most common concepts of REST APIs and writing an API definition using Swagger. Then you can convert that definition into code using a language you prefer.

Please note that you need a basic understanding of HTTP protocol and APIs.

Continue reading →

Categories: IS Diaries, Technology, Tips and Tricks, Tutorials | Tags: API, REST, RESTFul, Software, Technology, Web Services | Permalink.

Writing a Custom Local Authenticator with WSO2 Identity Server

Today I’m going to explain how we can write our own custom authenticator with WSO2 Identity Server. As you may already know, almost all the features of the WSO2 Identity Server can be extended and customized to cater to any business use case you have. And one of such extension point is the AbstractApplicationAuthenticator.

Continue reading →

Categories: Customizations, Identity Management, IS Diaries, Technology | Tags: Authentication, customization, Identity Server, Local authenticator, WSO2 | Permalink.