Integrasi WSO2 API Manager Dengan MyITS Single Sign-On Berbasis OAuth2

Tanujaya, Vincent Marcello Dwi (2020) Integrasi WSO2 API Manager Dengan MyITS Single Sign-On Berbasis OAuth2. Other thesis, Institut Teknologi Sepuluh Nopember.

[thumbnail of 05111640000089-Undergraduate_Thesis.pdf]
Preview
Text
05111640000089-Undergraduate_Thesis.pdf

Download (1MB) | Preview

Abstract

Di dalam organisasi (dalam hal ini DPTSI-ITS), yang mengimplementasikan atau menjalankan WSO2 API Manager sekaligus MyITS Single Sign-On sebagai authorization server, menghadapi masalah di mana WSO2 API Manager memiliki basis data pengguna dan data client (Aplikasi yang mengakses data pengguna). Sedangkan di lain pihak, MyITS Single Sign-On juga memiliki basis data pengguna dan data client sendiri. Permasalahan basis data yang terpisah ini membuat operasional menjadi sulit, sebagai contoh apabila ada API Resource yang diproteksi oleh WSO2 API Manager, maka API Manager akan mengeluarkan access token secara mandiri untuk dapat mengakses API atau Resource yang diproteksi oleh WSO2 API Manager. Pengguna dan client yang dapat mengakses resource tersebut hanyalah pengguna dan client yang terdaftar di basis data WSO2 API Manager. Padahal MyITS Single Sign-On mempunyai data-data tersebut. Tugas akhir ini ingin menyelesaikan masalah tersebut dengan melakukan integrasi antara WSO2 API Manager dengan MyITS Single Sign-On di mana MyITS Single Sign-On digunakan sebagai external authorization server oleh WSO2 API Manager. Sehingga, WSO2 API Manager tidak perlu menggunakan basis datanya sendiri dan tidak perlu menggunakan built-in authorization server-nya sendiri melainkan menggunakan MyITS Single Sign-On sebagai external authorization server
===============================================================================================================================
Within the organization (in this case DPTSI-ITS), which implements or runs the WSO2 API Manager as well as MyITS Single Sign-On as an authorization server, faces problems where the WSO2 API Manager has a user database and client data (Applications that access user data). On the other hand, MyITS Single Sign-On also has its user database and client data. This separate database problem makes operations difficult, for example, if there is an API Resource protected by WSO2 API Manager, the API Manager will issue an access token independently to be able to access the API or Resource protected by WSO2 API Manager. Users and clients that can access these resources are only users and clients registered in the WSO2 API Manager database. Even though MyITS Single Sign-On has these data. This final project wants to solve this problem by integrating WSO2 API Manager with MyITS Single Sign-On where MyITS Single Sign-On is used as an external authorization server by WSO2 API Manager. Thus, WSO2 API Manager does not need to use its database and does not need to use its built-in authorization server but instead uses MyITS Single Sign-On as an external authorization server.

Item Type: Thesis (Other)
Additional Information: RSIf 004.678 Tan i-1 2020
Uncontrolled Keywords: WSO2 API Manager, Single Sign-On, Authorization Server
Subjects: Q Science > QA Mathematics > QA76 Computer software
Divisions: Faculty of Intelligent Electrical and Informatics Technology (ELECTICS) > Informatics Engineering > 55201-(S1) Undergraduate Thesis
Depositing User: Tanujaya Vincent Marcello Dwi
Date Deposited: 24 Mar 2023 07:11
Last Modified: 24 Mar 2023 07:11
URI: http://repository.its.ac.id/id/eprint/73649

Actions (login required)

View Item View Item