Versions Compared

Old Version 2

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Once a client sends the RST to the STS, the STS first checks the authenticity of the requester by validating the request against the defined security policy of the STS. It then starts preparing the security token (Request Security Token Response). The STS includes all the requested claims and signs the token with its private key. It then finds the public certificate of the service to which this token will be sent by the client and encrypts the token with the certificate. The encrypted security token is opaque not transparent to the client.

...

Security token service provided by WSO2

The security token service offered provided by WSO2 is wso2carbon-sts. The STS facilitated is provided by the following feature, which is bundled by default in all WSO2 service hosting products. The following feature provides the service.

  • Name: STS Feature
  • Identifier: org.wso2.carbon.sts.feature.group

If this feature is not available by default in the product you are using, you can install it by following the instructions in section Feature Management.

Follow the instructions steps below to configure the STS servicewso2carbon-sts.1.

  1. Log

...

  1. in to the

...

  1. management console and select

...

  1. Services > List

...

  1. under

...

Image Removed

2. You can see the STS deployed.

Image Removed

3. The service dashboard appears. Click on the "Configure STS" link.

Image Removed

...

  1. the Main menu. 
  2. In the Deployed Services window that opens, you can see wso2carbon-sts listed.
  3. Click on wso2carbon-sts to open its dashboard.
  4. In the dashboard, click Configure STS.
    Image Added 
  5. The STS Configuration window appears. Enter the relying parties you trust. In other words, mention which relying parties can accept security tokens from the STS

...

  1. Also, upload the public certificate of the trusted relying party against its

...

  1. endpoint. For example,
    Image Modified
    Tokens are encrypted by the public key of the trusted relying party. Even the client who obtains the token to send to the relying party has no visibility to the included token.

...

5. The trusted service is added to the STS. You can remove it by clicking on the icon next to it or continue to add more trusted services.

Image Removed

...

hiddentrue

...

  1.