ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » User's Credential in WMB

Post new topic  Reply to topic
 User's Credential in WMB « View previous topic :: View next topic » 
Author Message
siddique20
PostPosted: Thu Jun 04, 2015 11:33 pm    Post subject: User's Credential in WMB Reply with quote

Novice

Joined: 03 Jul 2014
Posts: 13
Hi,

We are creating SOA services using IBM Integration Bus 9. We will create multiple web services, integration services and some schedule jobs.

We are bit worry about user's credentials storage mechanism as for every service there must be user id / password / User Status in input message.

We also don't need to use third party tool for these.

We need your expert opinion on following two points

1. Where best i can store userid/password like in Configurable Services, XML file, Data Base or any other

2. Encryption/decryption mechanism

Thanks in Advance.
Back to top
View user's profile Send private message
martinb
PostPosted: Fri Jun 05, 2015 1:12 am    Post subject: Reply with quote

Master

Joined: 09 Nov 2006
Posts: 210
Location: UK
To clarify...
You say you are exposing services from IIB.
You say input request to these must carry a id and password.

What you don't say is how you are validating the input requests?

A typical approach would be to configure input node with security profile specifying LDAP authentication. In this way the need to authenticate is completely decoupled from the business logic of the flow. You can adapt to changes in authentication service and token types independently from the flows implementation.


However you appear to be wanting to implement your own authentication mechanism?


If you are really are, I would recommend that you do so in a way that still exploits IIB security manager and allows the validation to be configured on flows through administrative configuration of the security profile.

In addition to LDAP, IIB also supports the WS-Trust protocols to communicate with a security provider. You could exploit this standard interface to plug in your own security provider that implements the secure password store and token validation.


There is a developerWorks articile that presents a possible solution to rolling your own security provider, see Implementing a simple WS-Trust server in WebSphere Message Broker using a database
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » User's Credential in WMB
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.