Configuring the Primary User Store¶
This documentation explains the process of setting up a primary user store for your system.
Info
The default User Store
The primary user store that is configured by default, is a JDBC user store, which reads/writes into an internal database. By default, the internal database is H2. This database is used by the Authorization Manager (for user authorization information) as well as, the User Store Manager (for defining users and roles).
Instead of using the embedded database, you can set up a separate repository and configure it as your primary user store. Since the user store you want to connect to might have different schemas from the ones available in the embedded user store, it needs to go through an adaptation process. We do the necessary adaptations depending on the user store type. We support the following primary user store types.
| User store type | User store manager class | Description |
|---|---|---|
| read_only_ldap | org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager |
Use |
| read_write_ldap | org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager |
Use |
| active_directory | org.wso2.carbon.user.core.ldap.ActiveDirectoryUserStoreManager |
Use |
| database | org.wso2.carbon.user.core.jdbc.JDBCUserStoreManager |
Use |
This can be defined in the [user_store] section of the <APIM_HOME>/repository/conf/deployment.toml file.
[user_store]
type = "database_unique_id"Follow the links given below to setup the required type of primary user store.
- Configuring a JDBC User Store
- Configuring a Read-Only LDAP User Store
- Configuring a Read-Write Active Directory User Store
- Configuring a Read-Write LDAP User Store