Monday, 10 October 2011

Securing a BPEL composite using OEG

In this blog I’ll demonstrate how to secure a SOA composite using Oracle Enterprise Gateway with WS-Header token.At first deploy a simple HelloWorld service.

Follow the link to setup OEG in your system https://docs.google.com/leaf?id=1D0Z0KfgFdvqGHIcpG_7B32mWImGGCRkWhO882KyRVJFYAx94QK9yf6vVTjQP&hl=en

Start enterprise gateway and policy studio.

image

Click on enterprise gateway and edit the active configuration.Password for admin user is blank by default.

image

image

Now in policy tab register your service,

image

image

Select all the default option after that.After successful registration you will get a new generated circuit policy as below,

image

Now create a WS Header authentication policy in your policy library and set it as start.

image

Go to the user tab and create a new user as you given in previous step.

image

Now go back to your generated circuit and edit as below under Request from Client tab.

image

Deploy (F6) your configuration to Gateway.You are done with securing your service , now we’ll test it from service explorer.

Click on import wsdl and point your service endpoint , change the port to OEG port,

image

Under security token click on WS-Security username token and give the appropriate credentials as below,

image Now test the service and you should get HTTP 200 response.

image

Now login to traffic monitor of OEG and check your request,

image

1 comment:

Unknown said...

Thanks for sharing fabulous information.It' s my pleasure to read it.I have also bookmarked you for checking out new posts.
Digital Marketing Training in Hyderabad