WSO2 Identity Server
This document describes how to use WSO2 Identity Server to manage access to YugabyteDB.
Before you can start using WSO2 Identity Server, ensure that you have WSO2 Identity Server installed in one of the following locations, depending on your operating system:
- Mac OS:
In addition, perform the following:
If it's not already installed, download and install curl.
Add the following entry to
/etc/hosts, as per the WSO2 Quick Start Guide:
Configuring WSO2 Identity Server
Configuring WSO2 Identity Server involves a number of steps.
Update the Database Configuration
You update the database configuration as follows:
Modify the deployment configuration file
<IS_HOME>/repository/conf/deployment.tomlto set the database to YugabyteDB. Specifically, change the
[database.shared_db]sections as follows:
[database.identity_db] type = "postgre" hostname = "localhost" name = "yugabyte" username = "yugabyte" password = "yugabyte" port = "5433" [database.shared_db] type = "postgre" hostname = "localhost" name = "yugabyte" username = "yugabyte" password = "yugabyte" port = "5433"
Set the following properties to
trueto configure cross-origin resource sharing (CORS) for running the sample application from Quick Start:
[cors] allow_generic_http_requests = true allow_any_origin = true
Set Up the Database Driver
You need to download the PostgreSQL JDBC driver into the
Apply the Yugabyte Patch for WSO2
WSO2 default carbon kernel code violates REPEATABLE READ semantics. Because YugabyteDB has stricter transaction semantics and does not allow unrepeatable read anomaly, you need to do the following in order to be able to use a patch of the critical JAR for YugabyteDB compatibility:
Copy the jar into the
Initialize WSO2 Identity Server and YugabyteDB
You can initialize WSO2 Identity Server and YugabyteDB as follows:
Set up the initial database schema and load data as follows:
Download the corresponding SQL dump file for your version of WSO2 Identity Server.
For example, for WSO2 Identity Server 5.11.0, you would execute the following command:
Load the SQL dump into YugabyteDB by executing the following command:
./bin/ysqlsh -f wso2_is_5.11.0.sql
Start WSO2 Identity Server by executing the following command:
You can run WSO2 Identity Server sample applications as follows:
Download sample applications from GitHub by executing the following command:
is-samples-distribution.zipfile is typically extracted into a directory called
Start the application server from the
IS_SAMPLESdirectory by executing the following command:
Start the samples from another shell terminal by navigating to the same
IS_SAMPLESdirectory and executing the following command:
To test one of the samples, start the first version of the application called Single-Sign-On by typing
1 at the prompt, as shown in the following illustration:
This creates the following two users that you can use to test login:
Junior Manager Username: alex Password: alex123 Senior Manager Username: cameron Password: cameron123
Run the sample applications
You can test the pickup dispatch functionality as follows:
Navigate to http://localhost.com:8080/saml2-web-app-pickup-dispatch.com/ and click Login.
On the Sign In dialog shown in the following illustrations, enter the login credentials of one of the users (alex or cameron), and then click Continue.
Confirm the settings via the Dispatch would need to dialog shown in the following illustrations and click Continue.
Upon completion, the vehicle booking sample application opens, as shown in the following illustration:
To test the pickup manager functionality, navigate to http://localhost.com:8080/saml2-web-app-pickup-manager.com/ and perform the preceding login steps. Once logged in, the vehicle pickup manager sample opens, as shown in the following illustration: