Versions Compared

Old Version 15

changes.mady.by.user Former user

Saved on

compared with

New Version 16

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Updating to improve the user experience

...

  1. On the Main tab of the Identity and Access Management Console, click Home > Identity > Service Providers> Add.
  2. Enter consentmgt as the Service Provider’s name. 

  3. Click Register.

  4. Click Inbound Authentication configuration > OAuth/OpenID Connect configuration > Configure.

    Set the values for the following parameters and keep the default value for the other parameters.

    ParameterValue
    OAuth Version2.0
    Allowed Grant Type

    code

    Callback URL

    regexp=(https://<IAM_HOST>:<IAM_PORT>/consentmgt\|https://<IAM_HOST>:<IAM_PORT>/consentmgt)

    Info

    The first and second URLs are respectively redirected and logout URLs.

    Note

    The OAuth client key/client ID and OAuth client secret are generated. Those are used in Configuring consent management jaggery application.

  5. Open the wso2-obkm-version/repository/deployment/server/jaggeryapps/consentmgt/config/conf.js file.

  6. Modify the apimHostapplicationIdauthCredentialredirectUrl, and logoutUrl parameters as follows. 

    Note

    In authCredential, be sure to encode the CLIENT_ID:CLIENTSECRET with BASE64ENCODE encoding. 

    Code Block
    {   "app" : "consentmgt",
   "applicationType" : "oauth2",
   "tenantDomain": "carbon.super",
   "apimHost":"http://<OBAM_HOSTNAME>",
   "apimNioPort":"8280",
   "apimHttpPort":"9763",
   "kmHost" : "https://<WSO2_OBKM_HOSTNAME>",
   "kmPort" : "9446",
   "kmTokenAPI" : "oauth2/token",
   "kmAuthorizeAPI" : "oauth2/authorize",
   "applicationId":"",
   "authCredential":"",
   "redirectUrl":"https://<OBKM_HOSTNAME>:9446/consentmgt",
   "logoutUrl": "https://<HOSTNAME>:9446/consentmgt",
   "tokenApiName" : "token",
   "tokenApiVersion" : "",
   "authorizeApiName" : "authorize",
   "authorizeApiVersion" : "",
   "pagination" : {
      "limit" : 11,
      "actualLimit" : 10,
      "offset": 0
   },
   "DeployedSpecification" : "UK"
}
    Info

    Update the specification under DeployedSpecification parameter approproately. Possible values are UK, BERLIN, and STET. By default, the value is set to UK.

    Tip
    titleTroubleshooting

    If you get hostname verification errors when accessing the Customer Care portal (https://<OBKM_HOST>:9446/ccportal), add the following to the <WSO2_OBKM_HOME>/wso2server.sh file and restart.

    • Dhttpclient.hostnameVerifier="DefaultAndLocalhost" \
    • Dorg.wso2.ignoreHostnameVerification=true \

    Now that you have configured the consent revocation application, try out the consent revocation apps in WSO2 Open Banking: