This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

A claim is a piece of information about a particular subject. It can be anything that the subject is owned by or associated with, such as name, group, preferences, etc. A claim provides a single and general notion to define the identity information related to the subject.

An identity claim is a special claim related to identity management. It can be used to specify information about the user account or the state of a user account such as the lastLoginTime, accountDisabled and accountLocked claims. Identity claims are identified by the claim URI. All identity claims have the term "identity" appended to the claim URI as follows: http://wso2.org/claims/identity/accountDisabled. 

By default, identity claim values are stored in the JDBC datasource configured in the identity.xml file. If needed, you can configure WSO2 IS to store the claim values in the userstore as well.

  1. Open the <IS_HOME>/repository/conf/identity/identity.xml file and do the following configuration to change the Data.Store property value to UserStoreBasedIdentityDataStore

    <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener" name="org.wso2.carbon.identity.governance.listener.IdentityMgtEventListener" orderId="95" enable="true"/>
    <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener" name="org.wso2.carbon.identity.governance.listener.IdentityStoreEventListener" orderId="97" enable="true">
    <Property name="Data.Store">org.wso2.carbon.identity.governance.store.UserStoreBasedIdentityDataStore</Property>
    </EventListener>
  2. The identity claims mentioned below should be mapped correctly to the attributes in the underlying user store. For more information on how to do this, see Adding Claim Mapping


See the following topics for information on configuring claims.

  • No labels