WSO2 Identity Server
Downloads
Documentation
- Installation Guide
- Adminstrator Guide
- Configuring User Stores
- Identity Server in Production Environment
- User Guide
- External References
Samples
Get Involved
Project Information
[Download] | [ Documentation Home] | [Release Note]
Following changes should be applied on a fresh Identity Server instance. (i.e. Do not start the Identity Server until the configurations are finalized)
Open wso2is-3.2.0/repository/conf/carbon.xml file
This private key is used for the HTTPS channel and for the token issuer to sign the issued tokens. This information has to be changed in two files.
Following section of the carbon.xml should be updated to match your private key information. The private key must be available in a keystore of type "JKS" or "PKCS12". For more information on key stores please see here .
<!--
Security configurations
-->
<Security>
<!--
KeyStore which will be used for encrypting/decrypting passwords
and other sensitive information.
-->
<KeyStore>
<!-- Keystore file location-->
<Location>${carbon.home}/repository/resources/security/wso2carbon.jks</Location>
<!-- Keystore type (JKS/PKCS12 etc.)-->
<Type>JKS</Type>
<!-- Keystore password-->
<Password>wso2carbon</Password>
<!-- Private Key alias-->
<KeyAlias>wso2carbon</KeyAlias>
<!-- Private Key password-->
<KeyPassword>wso2carbon</KeyPassword>
</KeyStore>
<!--
The directory under which all other KeyStore files will be stored
-->
<KeyStoresDir>${carbon.home}/conf/keystores</KeyStoresDir>
</Security>
Open wso2is-3.2.0/repository/conf/carbon.xml file
The host name of the Identity Provider must be changed to match the "Common Name" of the certificate of the private key.
<!--
Host name of the machine hosting this server
e.g. www.wso2.org
-->
<HostName>localhost</HostName>
<ServerURL>https://localhost:${carbon.https.port}${carbon.context}/services/</ServerURL>
Open wso2is-3.2.0/repository/conf/transports.xml file
The HTTP and HTTPS port also can be changed by changing the following configuration elements.
<transport name="http" class="org.wso2.carbon.server.transports.http.HttpTransport">
<parameter name="port">9763</parameter>
</transport>
<transport name="https" class="org.wso2.carbon.server.transports.http.HttpsTransport">
<parameter name="port">9443</parameter>
</transport>
Open wso2is-3.2.0/repository/conf/identity.xml file
OpenID provider server url can be changed by changing the following configuration element. Once this is set, OpenIDs will be generated in the following format [OpenIDUserPattern]/[User Name].
e.g: https://localhost:9443/openid/bob
Note: Both the configuration must have the HTTPS port
<OpenIDServerUrl>https://localhost:9443/openidserver</OpenIDServerUrl>
<OpenIDUserPattern>https://localhost:9443/openid/</OpenIDUserPattern>