Saturday, June 2, 2012

Enabling the HTTP Basic authentication to the Composite Service (Invoking a composite with HTTP authentication) – Oracle SOA Suite 11g

Enabling the HTTP Basic authentication to the Composite Service (Invoking a composite with HTTP authentication) – Oracle SOA Suite 11g

Sometimes we may need to enable the security like HTTP basic authentication to the composite service, so that the client can securely invoke our services providing the username/password.
This blog will explain the steps to enable HTTP basic authentication to our composite service. 

Configure the Authentication policy to the Composite Service:

  • Open the composite.xml   
  • Right click on the client service and click on Configure WS Polices


  •  Add the security Policy oracle/wss_http_token_service_policy for authentication in the security section.




Deploy the composite to the server. The same policy configuration can also be done through EM console after the deployment of the composite. 

Testing From SOAP UI:

 Without providing the Username/password - Client will receive 401 unauthorized error.


Providing invalid username/password -Client will receive 403 Forbidden error.



Providing correct username/password -Client will receive status 200 OK with the valid response message.




4 comments:

  1. Thanks you so much. it is very helpful to me in my project. Thanks a lot.


    BestRegards,

    Vinod (hyd)

    ReplyDelete
  2. Thanks. But where in EM i can set valid credentials?

    ReplyDelete
    Replies
    1. The users can be created from weblogic console,the service can be accessed with the users created through weblogic console.

      Regards
      Albin I

      Delete
  3. Is there any way to extract the username

    ReplyDelete