Skip to main content

Essential Debug Logs for WSO2 Identity Server

Essential Debug loggers for WSO2 Identity Server
 When you are working with WSO2 products, you have to enable debug logs to investigate issues. Its better to enable debug logs only for particular module that you need to investigate. It reduce debug writing time and unnecessary debug reading time.So you can easily understand the root cause when you are reading the console.I'm going to discuss about debug lines one by one.

You have to add debug line to [WSO2_HOME]\repository\conf\log4j.properties file, all debug lines are displayed in the console and write to the wso2carbon.log file.


To enable loggers for user core.This is helpful to investigate user related issues.

log4j.logger.org.wso2.carbon.user.core=DEBUG
    
To enable debug logs for identity module. This debug log will be helpful to investigate identity related issues.

log4j.logger.org.wso2.carbon.identity=DEBUG

If you need to investigate saml assertion or assertion related issue, you can enable debug logs for saml sso module. 

log4j.logger.org.wso2.carbon.identity.sso.saml=DEBUG

To enable synaps wire logs. (You cannot enable wire logs with Identity Server. But you can enable wire logs with other WSO2 products like ESB, APIM,)

log4j.logger.org.apache.synapse.transport.http.headers=DEBUG
log4j.logger.org.apache.synapse.transport.http.wire=DEBUG

To enable logs for SCIM 
log4j.logger.org.wso2.carbon.user.core=DEBUG
log4j.logger.org.wso2.carbon.identity.scim.provider=DEBUG
log4j.logger.org.wso2.carbon.identity.scim.common.listener.SCIMUserOperationListener=DEBUG

If you want to enable debug logs for authentication framework, You can investigate authentication session related issues. 
log4j.logger.org.wso2.carbon.identity.application.authentication.framework=DEBUG

To enable synapse wire logs 
log4j.logger.org.apache.synapse.transport.http.headers=DEBUG
log4j.logger.org.apache.synapse.transport.http.wire=DEBUG

Issues are related to LDAP, you can enabled below log
log4j.logger.org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager=DEBUG


I will explain other debug logs one by one 
 #log4j.logger.org.wso2.carbon.identity.application=DEBUG
 #log4j.logger.org.wso2.carbon.identity.mgt=DEBUG
 #log4j.logger.org.wso2.carbon.identity.oauth2=DEBUG
 #log4j.logger.org.wso2.carbon.identity.scim=DEBUG
 #log4j.logger.org.wso2.carbon.identity.mgt=DEBUG
 #log4j.logger.org.wso2.carbon.idp.mgt=DEBUG
 #log4j.logger.org.wso2.carbon.identity.provisioning=DEBUG
 #log4j.logger.org.wso2.carbon.identity.user.account.association=DEBUG
 #log4j.logger.org.wso2.carbon.identity.user.profile.mgt=DEBUG
 #log4j.logger.org.wso2.carbon.security=DEBUG
 #log4j.logger.org.wso2.carbon.identity.sso.agent=DEBUG
 #log4j.logger.org.wso2.carbon.identity.core=DEBUG
Labels:

Comments

Post a Comment

Popular posts from this blog

Reverse Proxy configuration with WSO2 Identity Server 5.0.0

Reverse proxy is a type of a proxy which can hide back end servers from the client applications. According to the above figure, Original servers are not exposed to the internet. Only reverse proxy is exposed to the internet.Client knows only the reverse proxy IP address. So he thinks that he is sending a request to the reverse proxy.He doesn't know anything about the original server. You can avoid some attacks using this architecture. Today I'm going to configure Apache HTTPD server(reverse proxy) and WSO2 identity server 5.0. Please download WSO2 identity server 5.0 from here You can install apache httpd server using below commands sudo apt - get update sudo apt - get install apache2 Restart the newly install apache server sudo service apache2 restart Apache is a modular server. This implies that only the most basic functionality is included in the core server.So You have to enable few other required features. Please use below command ...
Post a Comment
Read more

Test SOAP Client and REST Service in WSO2 ESB

Wso2 ESB can convert anything to anything. Today I'm going to explain the below scenario. Scenario :-  1. Soap client send a request to ESB with soap header. 2. ESB remove soap header and invoke the REST service which only accept XML format. 3. REST service generate a response in xml format 4. ESB adding soap headers to response and send back to SOAP client. As an example REST service, I'm going to use  jaxrs_basic  service in WSO2 Application server. Download wso2 application server from this link Step 1 :-            Change the offset value in carbon.xml file which is located in <AS_HOME>/repository/conf directory.                 If you started WSO2 ESB in offset "0" set offset in application server as "1"   <Offset>1</Offset>                Start wso2 application server Step 2 :-        ...
Post a Comment
Read more