This documentation is for WSO2 Identity Server 5.5.0 . View documentation for the latest release.

All docs This doc

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. If you have extended the OAuth2ScopeValidator and implemented your own scope validator, implement a new method called get<scopeValidatorName>getValidatorName(). The name that you specify as  <scopeValidatorName>  in the as the new method will be used in the UI and databasedatabase and the Management Console user interface

    Note
    titleNote

    If you do not implement a new method, the canonical name of the class will be used in the UI and database. database and the Management Console user interface.

  2. If you have custom scope validators that you have configured globally, and you want to configure those scope validators in all service providers in WSO2 IS 5.5.0, add the following snippet to the appropriate migration script in the <IS5.5.0_MIGRATION_TOOL_HOME>/migration-resources/migration-resources/5.5.0/dbscripts/step2/indentityidentity directory.

    Code Block
    languagesql
    INSERT INTO IDN_OAUTH2_SCOPE_VALIDATORS (APP_ID, SCOPE_VALIDATOR)
     SELECT IDN_OAUTH_CONSUMER_APPS.ID, '<scopeValidatorName>'
       FROM IDN_OAUTH_CONSUMER_APPS;

    Note
    titleNote
    • If you have configured JDBC scope validators in IS 5.4.x, and you want to configure those JDBC scope validators in all service providers in IS 5.5.0, replace the <scopeValidatorName> place holder in the above snippet with Role based scope validator.
    • If you have specified a name as <scopeValidatorName>in the new method for the scope validator in step 1, then replace the <scopeValidatorName> place holder in the above snippet with that name. If you did have not implement a new method in step 1specified a name for the scope validator, you can use the canonical name of your custom scope validator class to replace the <scopeValidatorName> place holder in the above snippet.
  3. If you want to use the XACML based scope validator introduced in WSO2 IS 5.5.0 together with your custom scope validators, add the following line under <ScopeValidators> in the <IS_HOME>/repository/conf/identity/identity.xml file:

    Code Block
    <ScopeValidator class="org.wso2.carbon.identity.oauth2.validators.xacml.XACMLScopeValidator"/>