Stack Overflow
Stack Overflow

Questions tagged [fiware-wilma]

FIWARE Wilma is the reference implementation of the PEP Proxy Generic Enabler specified within the FIWARE ecosystem. It works with both OAuth2 and XACML protocols

Wilma is an implementation of the FIWARE PEP Proxy Generic Enabler. The open standard specification for PEP proxies can be found here.

Wilma is used in combination with the Identity Management and Authorization PDP Generic Enablers to add authentication and authorization security to backend applications. This allows only specified users to access services. Policies and permissions can be managed down to the resource level allowing different access levels for different users.

Wilma is written in nodejs. The source code for the project can be found on GitHub. An official Docker image - fiware/pep-proxy - is also available.

The Documentation for Wilma can be found below:

57 questions
1
vote
0 answers

Wilma (FIWARE PEP Proxy) not working

I'm using Wilma (FIWARE PEP Proxy) in order to protect a Http-based service (for more details, WebHDFS, the REST API from Hadoop); among the operations available in this service there is an operation for uploading and creating a file. Until now, I…
frb
  • 3,738
  • 2
  • 21
  • 51
1
vote
2 answers

FIWARE Orion and pep proxy solutions?

From Orion documentations it has been mentionned that the two available PEP proxy are Wilma and Steelskin. I want to list all the available options so is there an other open source solutions for securing FIWARE Orion? Thanks in advance for your…
sabrina2020
  • 2,102
  • 3
  • 25
  • 54
1
vote
0 answers

FIWARE Wilma PEP Proxy bug: x-organisations header value contains rubbish

I want to restrict data that is retrieved from a back-end server to organisations to which the authenticated user is a member. From the documentation (https://github.com/ging/fiware-pep-proxy) this should be possible using Wilma's inbuilt function…
Robin
  • 103
  • 9
1
vote
1 answer

Fiware : wilma vs steelskin

when to use wilma and when to use steelskin? why there is no reference of steelskin in fiware generic enablers catalogue? Thanks in advance for your help!
sabrina2020
  • 2,102
  • 3
  • 25
  • 54
1
vote
1 answer

AuthZforce use without fiware enablers

Can the Fiware enabler AuthZforce be used without keyrock and wilma? can it be used using others pep and IDM?
sabrina2020
  • 2,102
  • 3
  • 25
  • 54
1
vote
1 answer

AuthZForce Security Level 2: Basic Authorization error "AZF domain not created for application"

We are trying to deploy our security layer (KeyRock, Wilma, AuthZForce) to protect our Orion instance. We are able to have security level 1 (authentication) with Keyrock and Wilma working, but when we try to insert AuthZForce to check the…
mrgiesel
  • 85
  • 1
  • 7
1
vote
2 answers

Can anyone explain the usage of Context Broker via PeP proxy?

I have installed orion Context Broker and pep proxy on my machine. I am targeting the global instance of keyRock and the AuthZforce to authenticate the context broker. Here is my config.js: var config = {}; config.pep_port = 1307; // Set this var…
Vrankela
  • 1,162
  • 3
  • 16
  • 39
1
vote
1 answer

How to configure PEP Proxy - Wilma Config.js for securing fiware orion

we have deployed a dedicated orion instance based on image in cloud Fiware Lab section. we need to add Pep proxy Wilma for authentication and authorization security to our backend applications. in the same dedicated instance we have installed…
Shima Fahima
  • 25
  • 3
0
votes
1 answer

Orion APIs authorization through Keycloak

After testing authentication in Orion with keycloak (Orion APIs authentication through Keycloak) with kong-pep-plugin, I'm interested in the authorization too; in particular, I want to give specific permissions (on path and verb) to users/groups…
pasquy73
  • 563
  • 3
  • 13
0
votes
1 answer

Check Request Headers using XACML in Fiware platform

I'm trying to integrate AuthzForce with Keyrock for advanced PDP and wanted to know how custom headers check rule can be made in XACML policies. As per my understanding and documentation, they've specified that with AuthzForce its possible to check…
guru
  • 3
  • 1
0
votes
1 answer

Configuring Fiware PEP Proxy, Keyrock and Orion Context Broker

I'm trying to integrate Keyrock and PEP Proxy in order to secure the access to the Context Broker but I'm having some issues. What I want to achieve is that only determined users registered in Keyrock can access to the Context Broker. I followed…
UnknowProgrammer
  • 1
0
votes
1 answer

Getting advice at fiware

I'm starting my studies at Fiware subject, however, I'm kinda lost, and I'd like to get some advice where to where to start, I've already read many articles about, but I'd like to star implement something (I already know docker)
Pedro Viana
  • 3
  • 1
0
votes
1 answer

Must i register one application for every pep proxy on Keyrock Idm?

Guess that we have multiple Fiware Generic Enablers deployed in Docker. I would like to protect those services with one pep proxy for each one. Is it ok to register my app and deploy multiple pep proxies with the same credentials give by Idm…
Kostas Tsakos
  • 169
  • 10
0
votes
1 answer

What security measures are used to protect message in between IoT Agent and sensor device?

As I was testing an android app controls door lock over Bluetooth, I deployed HMAC SHA256 on both the door lock controller and the android app to ensure integrity and authentication of message. Also I have the door lock controller to generate random…
Harry
  • 1,147
  • 13
  • 13
0
votes
1 answer

Fiware IDM server issue

I am using Fiware IDM version 6.2 and i have issues with keystone server (running on port 5000).. Keystone is working fine until server is not used for some amount of time (around 1 hour) after that first call that arrive ( in my case from pep-proxy…
Igor
  • 225
  • 1
  • 9
1 2
3
4