This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.
Implementing Security in the Identity Server
- Former user (Deleted)
Owned by Former user (Deleted)
WSO2 Identity ServerĀ provides many methods for implementing and managing security. These are described in the following topics.
- Configuring Transport Level Security
- Enabling Java Security Manager
- Saving Access Tokens in Separate Tables
- Timestamp in WS-Security to Mitigate Replay Attacks
- Mitigating Cross Site Request Forgery (CSRF) Attacks
- Mitigating Carriage Return Line Feed (CRLF) Attacks
- Mitigating Cross Site Scripting (XSS) Attacks
- WSO2 Carbon Secure Vault
Also see Securing Plain Text PasswordsĀ for password related security.