LibraryIdentity & Access Management


WSO2 Identity Server supports SAML authentication and single sign-on capabilities where it can be used as the identity provider for a relying party application (service provider). This blog post will focus on how you can retrieve user claims in SAML response with service provider claim configuration in WSO2 IS.

Library Search



[Blog Post] OAuth 2.0 Threat Landscapes

Not long ago — early one day in May, I got an email from a good friend of mine, which I didn't resist to open and check out what it was. He had shared a Google doc — and once I clicked on the link a suspicious screen appeared, asking me permission to read, delete, send and manage my emails. Why on the earth would ‘Google Docs’ ask permissions to access my emails? I really didn’t bother to see whether it’s the real Google Docs — or fake, but I didn’t proceed any further.

[Blog] The Role of Identity and Access Management in the Era of Digital Transformation

In this blog Prabath Siriwardana explores what encompasses a successful identity and access management strategy for digital transformation.

[Article] Frictionless Adoption of Security Recommendations for the Payment Services Directive 2 (PSD2) with WSO2

The Payment Services Directive 2 has been initiated by the European Union for the advancement of digital payment services. In order to adhere to the directive, payment service providers are required to follow several rules and recommendations in API security, API exposure, user authentication and user authorization. This article discusses the main considerations under PSD2 and how WSO2 products (mainly WSO2 Identity Server and WSO2 API Manager) can be leveraged when adapting and moving beyond PSD2.

Writing a Custom Inbound Authenticator for WSO2 Identity Server 5.3.0

Authentication is an integral part of any identity and access management suite, and WSO2 Identity Server is no exception. It offers a comprehensive and feature-rich authentication framework which is capable of handling almost all kinds of authentication protocols out-of-the-box with the added advantage of support for any type of authentication protocol through simple Java code.

WSO2 Identity Server 5.3.0 introduces a new authentication framework and brings with it the ability to write improved pluggable inbound/outbound authenticators. This article explores the constituent parts of an inbound authenticator component as found in WSO2 Identity Server 5.3.0 and how they fit together to handle a given custom authentication protocol.

Frictionless Adoption of Payment Services Directive (PSD2) with WSO2

In this webinar, Pushpalanka Jayawardhana, senior software engineer at WSO2 will will discuss and demonstrate how WSO2 can help you comply with PSD2 with ease.*275161955****Frictionless Adoption of Payment Services Directive (PSD2) with WSO2

Identity and Access Management in the Era of Digital Transformation

In this webinar, Prabath Siriwardena, senior director of security architecture at WSO2 will explore the challenges of IAM that need to be addressed when preparing an enterprise for digital transformation.*236650907*253306507,196852371,236650907,995486011,387519979,196484483*,,,,,*Sign up for all webinars in the Enabling Digital Transformation with WSO2 Technology - Webinar Series*Identity and Access Management in the Era of Digital Transformation