| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| Accessing SecurityProfile(user/pass) in ESQL code in a flow? |
« View previous topic :: View next topic » |
| Author |
Message
|
| junaid |
 Posted: Thu Dec 05, 2019 5:03 am Post subject: Accessing SecurityProfile(user/pass) in ESQL code in a flow? |
 |
|
Acolyte
Joined: 29 Nov 2018
Posts: 58
|
Hi,
I am following link https://www.ibm.com/developerworks/websphere/library/techarticles/1505_kumar/1505_kumar.html for SOAP web-service consumer. Same method I am applying for SOAP web-service provider.
I want to access username and password in esql to authenticate both consumer and provider. Is there any way to access user name and password of provider from SecurityProfiles Configurable Service in ESQL so it can be validate with Consumer credentials .
User Name and Password is plan text .
Regards,
Junaid Ahmed. |
|
| Back to top |
|
 |
| Vitor |
| Posted: Thu Dec 05, 2019 5:53 am Post subject: Re: Accessing SecurityProfile(user/pass) in ESQL code in a f |
|
|
Grand High Poobah
Joined: 11 Nov 2005
Posts: 26093
Location: Texas, USA
|
| junaid wrote: |
| I want to access username and password in esql to authenticate both consumer and provider. |
Why?
Why not use the built in features to authenticate the user?
_________________
Honesty is the best policy.
Insanity is the best defence. |
|
| Back to top |
|
|
| junaid |
| Posted: Thu Dec 05, 2019 10:31 pm Post subject: Accessing SecurityProfile(user/pass) in ESQL code |
|
|
Acolyte
Joined: 29 Nov 2018
Posts: 58
|
I am new to this task. Can you please provide me step which I can follow for built in features. I have done following things
1. Created Policy
2. Created Bindings
3. Created User ID & security profile
| Quote: |
mqsisetdbparms SBBROK -n SecurityID -u sbuser -p sb.123456
mqsicreateconfigurableservice SBBROK -c SecurityProfiles -o WSSecurityProfile -n "propagation,idToPropagateToTransport,transportPropagationConfig" -v "TRUE,STATIC ID,SecurityID"
|
4. Configured Bar file & sets(Policy, Binding & security Profile) on SOAPInput node.
5. Deploy My Flow
After that, I assumed that, on these provider polices,binding, profile. provider can authenticate consumer user name and password.
I am using iib version 10.0.0.15. |
|
| Back to top |
|
|
| Vitor |
| Posted: Fri Dec 06, 2019 5:47 am Post subject: Re: Accessing SecurityProfile(user/pass) in ESQL code |
|
|
Grand High Poobah
Joined: 11 Nov 2005
Posts: 26093
Location: Texas, USA
|
| junaid wrote: |
| After that, I assumed that, on these provider polices,binding, profile. provider can authenticate consumer user name and password. |
You assumed wrong.
The sequence of commands you post will cause IIB to insert the credentials sbuser/sb.12345 automatically into the correct fields of a WS-Security header (for those cases where the credentials can't be determined from the message content). It's the called service that would authenticate the user.
So are you:
a) trying to pass these credentials to a service you're calling
b) trying to authenticate a web call being made into IIB against those credentials
If a, you've succeeded and well done.
If b, stop trying and use LDAP
_________________
Honesty is the best policy.
Insanity is the best defence. |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
