Reputation: 59
how to do resource base authorization using wso2
I am new to wso2.
My problem is how to implement the things below.
user: user1,user2,user3
role: role1,role2,role3
resource: /abc/cde (GET)
role1 - user1 and user3
role2 - user 2
and role1 access for /abc/cde resource.
When user 1 calls this request they are getting a response, but when user 2 tries then it's showing access denied.
I have done the things below:
1) implement wso2 identity server and using oauth.
2) role dependent user mapping.
The 2 things above are working fine but how to check resource and method validation?
Upvotes: 2
Views: 69
Answers (1)
Reputation: 12513
This feature is available out-of-the-box in WSO2 API Manager. Since you're trying to secure an API, you should use API Manager instead of Identity Server.
You can define scopes to each resource and map roles to each scope.
See this for more details: https://wso2.com/library/articles/2017/01/article-an-overview-of-scope-management-with-wso2-api-manager/
Upvotes: 1
Related Questions
- WSO2 EntitlementPolicyAdminService using Rest API
- How to perform WSO2 user authentication
- Data Access Provisioning in WSO2 API Manager
- WSO2 API Management resource owner authentication
- APIs are to be protected by wso2 Identity server
- Server to Server Authentication in wso2 API manager
- WSO2 roles & Permission Identity server for OAuth2
- WSO2 Identity Server Authorization Service
- WSO2 identity server api
- How to create authentication API in WSO2 IS