Invoke admin services in wso2 identity server via HTTP instead of HTTPS

It is possible to access WSO2 identity server over HTTP protocol. But Its not recommended in production environment.

When you enable HTTP protocol, you can access admin console using different port(9763)

Step 1 :-

Open carbon.xml file which is located in <IS_HOME>/repository/conf directory and do below changes

<EnableHTTPAdminConsole>true</EnableHTTPAdminConsole>

You can log in to the management console using this url http://localhost:9763/carbon/admin/login.jsp

If you want to expose all WSO2 admin services via HTTP, you need to enable following property in carbon.xml file. It is also commented by default.

<HttpAdminServices>*</HttpAdminServices>

this is commented by default and you have to uncomment the line.

These configurations are enough for WSO2 identity server 5.0.0. If you need to enable http for wso2 identity server 5.1.0, you have to modify web.xml file as mentioned in Step 2.

Step 2 :-

Modify the web.xml file which is located in <IS_HOME>/repository/conf/tomcat/carbon/WEB-INF directory.

    <session-config>
        <cookie-config>
            <secure>false</secure>
        </cookie-config>
    </session-config>

After all configurations are done, log in to management console using above URL.

Note :-

All communications happening between server and browsers will not be encrypted and are open for attacks such as "Man in the Middle" and "Sniffing" attacks.

Comments

Reverse Proxy configuration with WSO2 Identity Server 5.0.0

Reverse proxy is a type of a proxy which can hide back end servers from the client applications. According to the above figure, Original servers are not exposed to the internet. Only reverse proxy is exposed to the internet.Client knows only the reverse proxy IP address. So he thinks that he is sending a request to the reverse proxy.He doesn't know anything about the original server. You can avoid some attacks using this architecture. Today I'm going to configure Apache HTTPD server(reverse proxy) and WSO2 identity server 5.0. Please download WSO2 identity server 5.0 from here You can install apache httpd server using below commands sudo apt - get update sudo apt - get install apache2 Restart the newly install apache server sudo service apache2 restart Apache is a modular server. This implies that only the most basic functionality is included in the core server.So You have to enable few other required features. Please use below command ...

Essential Debug Logs for WSO2 Identity Server

Essential Debug loggers for WSO2 Identity Server When you are working with WSO2 products, you have to enable debug logs to investigate issues. Its better to enable debug logs only for particular module that you need to investigate. It reduce debug writing time and unnecessary debug reading time.So you can easily understand the root cause when you are reading the console.I'm going to discuss about debug lines one by one. You have to add debug line to [WSO2_HOME]\repository\conf\log4j.properties file, all debug lines are displayed in the console and write to the wso2carbon.log file. To enable loggers for user core.This is helpful to investigate user related issues. log4j.logger.org.wso2.carbon.user.core=DEBUG To enable debug logs for identity module. This debug log will be helpful to investigate identity related issues. log4j.logger.org.wso2.carbon.identity=DEBUG If you need to investigate saml assertion or assertion related issue, you ca...

Logging parameters in WSO2 ESB Script mediator

Script mediator is helpful in many ways and it can be written in different scripting languages such as JavaScript, Groovy and Ruby. I'm going t o use JavaScript for this example. I'm trying to show you the way that you can use to log some values when you are writing a mediator. This will be helpful when you need to log values when you are writing a complex script mediators. This is a sample script <script language= "js" > var log = mc.getServiceLog(); log.info( "started" ); var temp_auth = mc.getProperty('authheader'); log.info( "temp_auth : " + temp_auth); log.info( "out" ); </script> When you define a " var log = mc.getServiceLog();" variable, you can use log object to display values as below. log.info( "started" ); log.info( "temp_auth : " + temp_auth); This is a sample proxy service <?xml version= "1.0" encod...

My EyE

Search This Blog