Search This Blog
oracle/pii_security_policy - OWSM Policy
oracle/pii_security_policy - OWSM Policy
Use of this policy to encrypt user data in server log files ( Example SSN number or Credit Card Number ). So additional data level security
Project structure :
Composite Structure :
Adding Policies in proxy service - PII
Edit PII property and add Xpath expression to the filed you want to encrypt
Output message Optional
CSF Key is required to encrypt the user data. Configure in Key store ( EM Console)
Pipeline structure
Body replaced to view in console output
EM Console adding security --> Credentials
Create map as "oracle.wsm.security" and create key as "pii-csf-key"
Provide username and password
Console Input and Output data
( Input "Krishna Moorthi" and in Output encrypted as below )
Secure JMS module with authentication ( Username and password )
Secure JMS module with authentication ( Username and password )
In real world providing security is important for JMS module . So the user have permission only able to Consume or produce message to Topic/ Queue
My JMS Module Name : WVOResHubModule I want to implement security for Topic . As of now Group policy to everyone can access Topic message. In order to provide access for certain users add security shown below
JMS Module --> Security -->Policies
Click Add Conditions --> Predicate List --> User
Add usernames : I added "weblogic" as username
Now weblogic added in JMS module level . so all the Queues and topics below to this JMS module secured with username and password auth
Now the policy used by changed from "everyone" to "weblogic". So weblogic user have only permission to read and write message to Topic/ Queue
Subscribe to:
Posts (Atom)