Add visibility restrictions in the developer portal based on the Organizations

[chamilaadhi]

Problem

Need to restrict API and applications based on the user organization. Refer https://docs.google.com/document/d/1U_rYpwpKyvM_hEzUzUVHJ7Gu-N-xu7Of97r4cRxlMQM/edit

Tasks

• [ ] Add the capability to set API’s organization visibility from the publisher portal
• [ ] Dev portal search based on organization.
• [ ] Resolve user organization when login into the developer portal
• [ ] Capability to create Application sharable to the organization.
• [ ] Set available organizations for business plans

[chamilaadhi]

Initial implementation https://github.com/wso2/carbon-apimgt/pull/12512

This PR set visibility restriction for API using organization and filter API in the dev portal listing page based on the user organization

[chamilaadhi]

Add Application sharing for with the organization https://github.com/wso2/carbon-apimgt/pull/12517

[chamilaadhi]

Publisher side UI changes to set organization visibility to APIs https://github.com/wso2/apim-apps/pull/729

[chamilaadhi]

Additional fixes https://github.com/wso2/carbon-apimgt/pull/12519 https://github.com/wso2/carbon-apimgt/pull/12521

[chamilaadhi]

Add application sharing with the organization https://github.com/wso2/apim-apps/pull/730

[chamilaadhi]

Add capability to add organizations to business plans and filter it in the devportal for the API based on user organization https://github.com/wso2/carbon-apimgt/pull/12523

[chamilaadhi]

Moving to registry property to store organization information instead of introducing new field to rxt. https://github.com/wso2/carbon-apimgt/pull/12528

Above change needs carbon-registry fix https://github.com/wso2/carbon-registry/pull/440 as well. Currently we can only search with one registry property. with this we can use multiple properties

[chamilaadhi]

Since there is a new property added to the API, we need to do a registry resource migration. To prevent this, we could add a default property value to all the migrated API when generating the indexed data. Following PRs do this

https://github.com/wso2/carbon-apimgt/pull/12529 https://github.com/wso2/carbon-registry/pull/441

When migrating to the new version, with this change, we have to do a reindexing only

[chamilaadhi]

Setup IS 7.0 with APIM developer portal. IS 7 is setup as a federated authenticator. We need to add custom oidc claims to retrieve organization and organization id since it is not available in APIM

Following flow is configured

Steps on configuring can be found in https://docs.google.com/document/d/1MpsVrYCL4lT5p6rjB_ViAbU09yCCyzTLuDII9Clcsq0/edit?usp=sharing

[chamilaadhi]

Add organization visibility for subscription policy in admin porta

https://github.com/wso2/apim-apps/pull/738

[chamilaadhi]

Pending tasks

• [ ] Dev portal unified search, tag search restrictions based on organization
• [ ] Display Organization information on the dev portal
• [ ] Keymanager connector changes for applications creation in org space
• [ ] Handle login when JWT is enabled instead of opaque token
• [ ] Organization information sent for analytics
• [ ] Workflows related improvements
• [ ] Dev portal logout issue when IS 7 is configured as Federated IDP
• [ ] Fix Org feature with application sharing enabled
• [ ] Support definition search feature once it is merged https://github.com/wso2/api-manager/issues/3103