Updated authenticating-with-client-certificates.md#4868
Updated authenticating-with-client-certificates.md#4868ArooshLele wants to merge 9 commits intomasterfrom
Conversation
Signed-off-by: arooshlele <alele@rocketsoftware.com>
|
😺 Thank you for creating this PR! To publish your content to Zowe Docs, follow these required steps.
Need help? Contact the Doc Squad in the #zowe-doc Slack channel. |
| ::: | ||
|
|
||
| :::note | ||
| API ML currently only supports `DIGTNMAP` for certificate-to-user mapping. |
There was a problem hiding this comment.
This is only if disabling the internal mapper, but with internal mapper enabled it supports both mapping and adding the certificate to the user:
There was a problem hiding this comment.
@pablocarle Thanks for your feedback.
The following is a draft of the reworded note.
Please let me know whether it is correct or whether any information is to be added.
Thanks in advance!
Note:
If the internal mapper is disabled, then API ML only supports DIGTNMAP for certificate-to-user mapping.
If the internal mapper is enabled, then API ML supports the following:
DIGTNMAPfor certificate-to-user mapping.- Adding the certificate to the user.
CC: @ArooshLele @hrishikesh-nalawade @1000TurquoisePogs @gauravs-20 @janan07
Signed-off-by: ArooshLele <alele@rocketsoftware.com>
|
Hello Pablo @pablocarle,
CC: @gauravs-20 @ArooshLele @1000TurquoisePogs @hrishikesh-nalawade |
| If the internal mapper is disabled, then API ML only supports DIGTNMAP for certificate-to-user mapping. | ||
| If the internal mapper is enabled, then API ML supports the following: | ||
| - DIGTNMAP for certificate-to-user mapping. | ||
| - Adding the certificate to the user. | ||
| ::: | ||
|
|
||
| :::note | ||
| API ML currently only supports `DIGTNMAP` for certificate-to-user mapping. | ||
| ::: |
There was a problem hiding this comment.
This is backwards, the default in v3 is internal mapper:
Internal mapper: supports DIGTNMAP and adding the cert to the user.
ZSS mapper: only supports adding the certificate to the user.
The note says that API ML only supports DIGTNMAP, but this is not true. In the default internal mapper, both are supported.
There was a problem hiding this comment.
The statement is updated.
Signed-off-by: ArooshLele <alele@rocketsoftware.com>
| ``` | ||
|
|
||
| :::tip | ||
| :::NOTE |
There was a problem hiding this comment.
is this correct in upper case?
There was a problem hiding this comment.
is this correct in upper case?
The text is edited. It is now in the lower case.
| :::NOTE | ||
| In API Mediation Layer, the Internal mapper is enabled by default. The API Mediation Layer hence supports `DIGTNMAP` and adding the certificate to the user, whereas the | ||
| `ZSS` mapper only supports adding the certificate to the user. | ||
| To disable the API ML mapper, ensure that you set the parameter `components.gateway.apiml.security.useInternalMapper` to `false`. |
There was a problem hiding this comment.
I think this statement should be removed, as it could be confusing, the guide is already written to recommend not changing the default
There was a problem hiding this comment.
I think this statement should be removed, as it could be confusing, the guide is already written to recommend not changing the default
Noted. The statement [To disable the API ML mapper, ensure that you set the parameter components.gateway.apiml.security.useInternalMapper to false.] is removed.
Edited the text in the Note. Signed-off-by: ArooshLele <alele@rocketsoftware.com>
List the file(s) included in this PR: authenticating-with-client-certificates.md
Describe your pull request here:
A note is added.
The proposed note may be specific for a customer, based on the feedback from that customer. At this stage, it is unknown whether the note is fully factually correct and valid for all customers. If the note needs to include more information, please add SMEs to this Pull Request. They could provide a feedback.
Thank you,
CC: @ArooshLele @gauravs-20
After creating the PR, follow the instructions in the comments.