Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Warning

This page is under construction

WSO2 Identity Server provides a SOAP service to validate the OAuth2 token it has issued which can be used by the resource server. 

The relevant code segment in the our sample webapp wso2 playground2 for OAuth2 can be found here.

Following steps provides the guidance on calling the service using SOAP UI.

  1. Make admin services WSDL accessible.
    1. Open the file wso2is-5.1.0/repository/conf/carbon.xml
    2. Configure "HideAdminServiceWSDLs" property to false. (This step is just to make get the service WSDL. Once the service WSDL is taken make sure to revert this change to hide admin service WSDLs)

      Code Block
      languagetext
      <!-- If this parameter is set, the ?wsdl on an admin service will not give the admin service wsdl. -->
              <HideAdminServiceWSDLs>true</HideAdminServiceWSDLs>
    3. Restart the serverto  make the change effective.
  2. Go to SOAP UI and give the WSDL location.
    1. Service Name: OAuth2TokenValidationService 

    2. WSDL location: https://localhost:9443/services/OAuth2TokenValidationService?wsdl

    3. Provide the parameters to call the validate method as below.

      Image Added

      1. Since this validation service is an admin service, a valid user name and password needs to be provided in order to consume the service.
      2. Identifier value is the token to be validated. 
      3. If user claims are also required while validating the access token, a list of claim URIs can be provided as well.
      4. The response will provide authorized user for the token, if the token is valid and how many more seconds the token is valid. If there was an error occurred while validating the token, it can be sent as the error message.