Skip to content

A Custom Provisioning Handler to assign roles during JIT Process in WSO2

License

Notifications You must be signed in to change notification settings

athiththan11/JIT-Role-Provisioning-Handler

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

JIT Role Provisioning Handler

This repo contains a custom Provisioning Handler to assign roles to users in WSO2 during JIT provisioning.

This branch contains the implementation for API Manager v3.2.0. You can clone this repo and build the same for other versions with correct dependencies.

Use Case

This handler can be used to assign roles for federated users who are provisioned from external sources. When the configured external IDP is not sending any Role / Group information in the SAML response or in the OIDC token, we can use this handler to conditionaly assign the required roles to the users to provide access to the Portals.

Build & Deploy

Build

Execute the following command to build the project

mvn clean install

Deploy & Configure

  • Copy the built JAR artifact from /target directory to <APIM_HOME>/repository/components/lib directory

  • Edit the <APIM_HOME>/repository/conf/deployment.toml and add the following

    [authentication.framework.extensions]
    provisioning_handler = "com.sample.handlers.JITRoleProvisioningHandler"
  • Restart the server

License

Apache-2.0

About

A Custom Provisioning Handler to assign roles during JIT Process in WSO2

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Languages