WSO2 API Manager: Customizing the user profile GUI - api

I changed the user store to our custom oracle db. so, there are some fields that should be added to user profile when set the user profile of a user. How can I add some new properties to user profile GUI and map those to related fields in um_user table? thanks for your response!

you may want to have a look in the administrative console ( /carbon ) for the claim management.
Locate claims in the claim dialect http://wso2.org/claims, there you can define additional user attributes and their attribute names (field name in the underlying userstore).
good luck

Related

How can add an object to User Profile in WSO2 IS

Currently, I need add new object to user profile in wsso2 IS as default which be like the below claim which should choose able by customer.
identity {
"identityId": 23,
"identityName": " Name Test".
"Identity Url": "UrlTest"
}
I also read some documents which advice me to add new claims in the below links :
http://pathberiya.blogspot.com/2012/05/claim-management-with-wso2-identity.html
https://docs.wso2.com/display/IS510/Claim+Management
But in the document, I can only add specific attribute, not an object.
How can I do in this case ?
I appreciate your help in this.
Thanks.
This kind of a attribute is called a complex attribute in SCIM. Currently you cannot have user defined complex attribute types apart from the default complex attributes supported, e.g. address, in WSO2 Identity Server (neither in 5.1.0 nor 5.2.0).

Associate custom objects with a particular user

I am working on a Titanium Alloy project where in I am creating custom objects using ACS. I also have different users in the Users ACS. I wish to associate a particular custom object to a particular logged in user.
For example, If user A is logged in the custom object created by that user should be associated to user A. Same for user B and so on. How do I create this association? Currently my Custom objects get created but they are not associated to the logged in user.
After a little discussion, I realised I should add my scenario too.
My scenario is, a user changes a few settings using the toggle switch. This information should be stored for a user and later on push notification for selected settings should be sent to the user.
Any help in this regard is greatly appreciated.
Regards,
Shreerang
So i think you should store custom object in database with its user name so whenever you want you can get back with user's name.

MVC 4 model field custom authorization

We are creating an MVC 4 application that requires the user to be authorized to view and/or interact with certain model fields based on his/hers role membership.
For example if the model has a field SSN, the user should be allowed to view this field only if he/she is a member of the admin role. Once displayed the user should be able to modify it only if member of the profile_admin role. In other words, the SSN field should not be rendered if the user is not a member of the admin role and should be disabled if the user is not a member of the profile_admin role. Which roles have the permissions should be controlled by the site admin via the admin UI.
One possible solution is to wrap the SSN field in a partial view and then handle the rendering in our custom view engine. However, this method will require every field that we want to control to be in a partial view and it would require code change if the user wants to control another field (say HireDate)
We were hoping that we could achieve this by using a custom attributes in the metadata class like so:
[CustomFieldAuthorizeAttribute]
public string SSN { get; set; }
We would keep the authorization information for each field in the database like so:
FieldName RoleId AllowView AllowEdit
SSN 1 True False
When the attribute executes it will check the role membership of the currently logged user and will determine the permissions to view and edit for this field and then it will inject the appropriate html attributes like class="hidden" or disabled="disabled".
This way if the user wants to add authorization for another field, all we need to do is create a record in the database for this field. The custom attribute will pick it up from there.
Is it possible to achieve such functionality
Thank you.
For those of you that are facing this situation, I used the concept described in this article to create the necessary functionality. With a little tweaking, the solution worked exactly as required.
Thanks.

Field Permissions disabled on Profile Object Settings in Salesforce

I have a user profile in Salesforce which I'd like to be unable to edit some fields. Unfortunately in the Field Permissions section of the Profile Object Settings those fields appear as disabled (grayed out) but checked. Any clues?
I'm guessing you're trying to edit one of the standard profiles that ships with salesforce. This isn't allowed. Clone the profile, edit the new profile as needed, then assign users to the new profile.

Sharepoint Custom Claims provider and Sharepoint profile “claim” data mapping

I have an custom claims provider that uses a IP-STS on Sharepoint 2010.
I want that a particular claim that comes from the IP-STS to map the Sharepoint user profile.
i.e:
Map the http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress claim to the "work email" field on the sharepoint's user profile
I want to do this automatically on the first time the user logs in, without any additional steps.
How can we accomplish that?
Just for your information, I've been researching pretty hard about it:
Even if I map it when I install the claims provider, this way:
$map = New-SPClaimTypeMapping "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" -IncomingClaimTypeDisplayName "Email" -SameAsIncoming
I can't see the right info on the Sharepoint user profile.
Any help?
Thanks in advance