WSO2 Identity Server supports supports the XML format as well as the JSON format with regard to XACML 3.0 JSON requests and responses. Therefore, you can send XACML Multiple Decision Profile (MDP) requests in JSON format, and can also recieve MDP responses in the JSON format in an authorization flow in WSO2 Identity Server. For a list of key points you need to keep in mind when you work with XACML 3.0 JSON requests and responses, see JSON Support with XACML 3.0.
Let’s take a look at a sample scenario to understand how to create a MDP request in JSON format, and how you can recieve a MDP responses in the JSON format in an authorization flowhow you can work with MDP requests and responses in JSON format using WSO2 Identity Server.
Consider a sample scenario where a user requests authorization to a resource registered in WSO2 Identity Server. When WSO2 Identity Server receives the request, the Policy Decision Point (PDP) performs policy evaluation and provides the authorization decision response. Here, we will look at a single request that contains multiple requests to be evaluated by the PDP.
...
Table of Contents | ||||
---|---|---|---|---|
|
Prerequisites
- Download and run WSO2 Identity Server. For detailed instrction on how to install WSO2 IS, see Installing the Product.
- Go to the Chrome Web Store and add the Postman app.
Procedure
Follow the steps below to publish a sample policy to the PDP in WSO2 Identity Server:
...
Now that you have published the policy, you can send a sample request and see how the policy evaluates the request.
Testing the authorization flow
Tip |
---|
You can use any REST client to send a sample request. In this tutorial we are going to use Google Chrome Postman app as the REST client. |
...
view-welcome
view-status
view-summary
modify-welcome
Analyzing the response
You will see a JSON response similar to the following:
...
Now that you understand how to create work with MDP requests and responses in JSON Formatformat using WSO2 Identity Server, you can send XACML MDP requests in JSON format depending on your requirement, and also recieve MDP responses in the JSON format in an authorization flow in using WSO2 Identity Server.