how to configure rampart TokenStorage in wso2esb 4.8.0

StackOverflow https://stackoverflow.com/questions/22990096

Question

is it possible to configure the rapart tokn storage in wso2esb 4.8.0?

use case is this: I have a SAML secured proxy, when the proxy is called, rampart stores the saml token in the token storage: SimpleTokenStore, (implementation of org.apache.rahas.TokenStorage).

It saves all the tokens in memory, so this becomes very heavy in a production environment.

My solution is to write an implementation of that interface, but my question is: where should I configure it?

thank you

Lorenzo

Was it helpful?

Solution

Solution is:

in the ws security policy file of the proxy service add in the <RampartConfig> element the child <tokenStoreClass>my.company.TokenStorageImplementation</tokenStoreClass>

then create a class that implements org.apache.rahas.TokenStorage, with custom business logic and put it in the carbon classpath eg: repository/components/lib

I think this is very usefull, because otherwise rampart save all received token in heap memory, so in a production environment this may cause Heap space saturation

hope it helps!

Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
scroll top