-
-
-
-
-
-
-
-
-
- <%
- }else{
- %>
-
-
-
-
- <%
- }
- %>
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- -
Error message is : <%=Encode.forHtmlContent(e.getMessage())%> -
-<% - - } - -%> - - - -
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-| <%=Encode.forHtmlContent(cert.getAlias())%> - | -<%=Encode.forHtmlContent(cert.getIssuerDN())%> - | -<%=Encode.forHtmlContent(cert.getNotAfter())%> - | -<%=Encode.forHtmlContent(cert.getNotBefore())%> - | -<%=cert.getSerialNumber()%> - | -<%=Encode.forHtmlContent(cert.getSubjectDN())%> - | -<%=cert.getVersion()%> - | -|
| - - | -|||||||
-
-
| <%=Encode.forHtmlContent(cert.getAlias())%> - | -<%=Encode.forHtmlContent(cert.getIssuerDN())%> - | -<%=Encode.forHtmlContent(cert.getNotAfter())%> - | -<%=Encode.forHtmlContent(cert.getNotBefore())%> - | -<%=cert.getSerialNumber()%> - | -<%=Encode.forHtmlContent(cert.getSubjectDN())%> - | -<%=cert.getVersion()%> - | -Delete - | -
Securing a service
-How to enable security on a service?
-Steps
--
-
- If you want to use Username Token related security scenarios you must create user groups who are authorized to access the service. User groups can be created from the system-default user store or an external storage. For more details on creating user groups click here -
- If you want to provide X509 related security scenarios, add the trusted certificates to the system. For more details click here -
- Go to the "Service Information" page of the particular service. -
- Click on "Security" link under "Service Management" page. -
- Select "Enable Security" as yes. This will show you a list of available security scenarios. -
- Select the scenario and click on Next. Follow the steps -
How to disable a security of a service?
-Steps
--
-
- Go to the "Service Information" page of the particular service. -
- Click on "Security" link under "Service Management" page. -
- Select "Enable Security" as No. This will disable security. -
Security Management
-
-
-
-
--
-
- User Management -
- User Store Management -
- User Group Management -
- Key Store Management -
You can add/delete users to the system default user store. Click on change password to change the password of user
-External user stores can be added to the system. External user stores can be either a relational database or a LDAP server.
-Create user groups using the system default user store or from external users stores. When you assign Username Token authentication to services you must select more than -one user groups to authenticate users.
- -Add key stores to the system. When adding trusted certificates you can add the whole trusted certificate store or import your certificates into a key store that is already -existing in the system.
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/components/security-mgt/org.wso2.carbon.security.mgt.ui/src/main/resources/web/securityconfig/add-security.jsp b/components/security-mgt/org.wso2.carbon.security.mgt.ui/src/main/resources/web/securityconfig/add-security.jsp
deleted file mode 100644
index 4742f1d0899..00000000000
--- a/components/security-mgt/org.wso2.carbon.security.mgt.ui/src/main/resources/web/securityconfig/add-security.jsp
+++ /dev/null
@@ -1,117 +0,0 @@
-
-<%@page import="org.apache.axis2.context.ConfigurationContext"%>
-<%@page import="org.wso2.carbon.CarbonConstants"%>
-<%@page import="org.wso2.carbon.security.ui.client.SecurityAdminClient"%>
-<%@page import="org.wso2.carbon.ui.CarbonUIMessage"%>
-<%@page import="org.wso2.carbon.ui.CarbonUIUtil" %>
-<%@page import="org.wso2.carbon.utils.ServerConstants"%>
-<%@page import="java.text.MessageFormat"%>
-<%@ page import="java.util.ResourceBundle" %>
-<%@ page import="org.owasp.encoder.Encode" %>
-<%@ page import="java.util.ArrayList" %>
-<%@ page import="java.util.Map" %>
-<%@ page import="java.util.List" %>
-<%
- String forwardTo = null;
- String serviceName = (String) session.getAttribute("serviceName");
- String specificPath = (String) session.getAttribute("returToPath");
- if (specificPath==null) {
- specificPath = (String) session.getAttribute("returnToPath");
- }
- String BUNDLE = "org.wso2.carbon.security.ui.i18n.Resources";
- ResourceBundle resourceBundle = ResourceBundle.getBundle(BUNDLE, request.getLocale());
- try {
- String cookie = (String)session.getAttribute(ServerConstants.ADMIN_SERVICE_COOKIE);
- String backendServerURL = CarbonUIUtil.getServerURL(config.getServletContext(), session);
- ConfigurationContext configContext =
- (ConfigurationContext) config.getServletContext().getAttribute(CarbonConstants.CONFIGURATION_CONTEXT);
- SecurityAdminClient client = new SecurityAdminClient(cookie, backendServerURL, configContext);
-
- String scenarioId = request.getParameter("scenarioId");
-
- String securityCategory = request.getParameter("org.wso2.security.category");
- if (securityCategory != null && securityCategory.equals("kerberos")) {
- String servicePrincipalName = request.getParameter("org.wso2.kerberos.service.principal.name");
- String servicePrincipalPassword = request.getParameter("org.wso2.kerberos.service.principal.password");
-
- client.applyKerberosSecurity(serviceName, scenarioId, servicePrincipalName,
- servicePrincipalPassword);
-
- } else {
-
- String policyPath = (String) session.getAttribute("policyPath");
- ListUser Management
-Users can be added to the system default user store using the UI. Users can be deleted and their passwords can be changed.
-
-
-User Store Management
-The application server can connect to external LDAP servers and JDBC user stores. When creating a connection to external user stores all connection properties must be specified
-
-
-User Group Management
-User groups can be created from external and system-default user stores. A user group can have users from a single user store only. Later on it can be edited to add/remove users.
-
-Key Store Management
-Key stores can be uploaded to the server.
-
-You also have the option of uploading the trusted certificates to an existing keystore.
-
-
-
-
-
-
-
-
-
-<%=Encode.forHtmlContent(info)%>
- -- -
| - - | -- - | -
- -
-
-
-
-
- | - " onclick="location.href = '<%=backLink%>'"> - | -
-
-
-
-
-
-
-
-
-
-<%
-
- Map
-
-<%=Encode.forHtmlAttribute(info)%> -
- --<% - if (category.contains("ut")) { -%> - - -<% - } -%> - -
-
- 
-
-
-
-