Supporting Enhanced Security Using WSO2 Identity Server

After saving the settings, the appropriate roles are created and added to the corresponding users in the WSO2 Identity Server (WSO2 IS).

Roles that are defined for column security have the following naming convention:

Internal/dc.[domainName].[columnName]

Roles that are defined for criteria/row security have the following naming convention:

Internal/dcc.[domainName].[columnName].[criteriaValue]

The following image shows sample security roles in the WSO2 IS.

If required, you can create those roles manually in the WSO2 IS by following the naming conventions. The corresponding column set(s) will be created in the Administration console.

If a column set is no longer required, you can click the Delete button so that all related column set roles will be deleted from the corresponding users in the WSO2 IS.

Note: Created roles will still exist in the WSO2 IS, but they will not affect the user interface because they are unassigned.