T3TWS5.More on TWS - Part 1-R15.pdf

More on TWS  – Part 1

TEMENOS EDUCATION CENTRE Warning Warni ng:: Thi This s do docu cumen ment, t, is pr prot otec ecte ted d by co copy pyrig right ht la law w an and d in inte tern rnat atio iona nall tre treat atie ies. s. No pa part rt of th this is do docu cume ment nt m ay ay be reproduced or transm ititted in any form or by any means, electronic or m ec echanical, for any purp pu rpos ose, e, wi with thou outt th the e ex expr pres ess s wri ritt tten en per ermi miss ssiion of TE TEME MENO NOS S HE HEAD ADQ QUA UART RTE ERS SA Un Una aut utho hori rize zed d repr re prod oduc ucti tion on or di dist stri ribu buti tion on of th this is pr pres esen enta tati tion on or an any y po port rtio ion n of it it,, ma may y re resu sult lt in se seve vere re ci civi vill an and d cr crim imin inal al pena pe nalt ltie ies, s, an and d wi will ll be pr pros osec ecut uted ed to th the e ma maxi ximu mum m ex exte tent nt po possi ssibl ble e un unde derr ap appl plic icab able le la law. w.” Info Informa rmatio tion n in thi this s docum do cumen entt is su subj bjec ectt to ch chan ange ge wi with thou outt no noti tice ce

Objectives

 At the end of the session, you will be able to: 

Implement WS-Security feature in TWS

WS-Security



WS-Security (Web Services Security, short WSS) is a flexible and feature-rich extension to SOAP to apply security to web services.



It is a member of the WS-* family of web service specifications and was published by OASIS.



It incorporates security features in the header of the SOAP message.



It specifies standards to protect the integrity and confidentiality of the message .



WS-Security addresses: 



 Authentication



Signatures



Encryption

Let us explore the support for WS Security in TWS

OFS.SOURCE setting



Prerequisite - OFS.SOURCE record TWS must have Attributes value PREAUTHENTICATED.

WS Security in TWS (EE)

WS Security 

In order to enable WS-Security in TWS java, UserCredentials in Message Header (WS-Security) property is provided in the login dialog box.



Once you select this option, then the username provided in the SOAP Header will be mapped to the web request common and the password is not provided.

WS-Security

JBoss default validation

standalone-full.xml

Message

SOAP Request

SOAP Response

Workshop



Create a new web service for ACCOUNT version to implement WS Security using TWS (EE)

SAML tokens

IdP Identity Provider 

3

2 user 

4

1

SP SAML secured TWS service

SAML stands for Security Assertion Markup Language. It is an XML based open-standard data format used for authenticating and authorizing client requests.

SAML tokens in SOAP header in Request

SAML tokens  – Successful & Error response

Quiz - solution

Description

Name the component !

Tool which can be used to test the WSDL schema published by TWS

WS

Mandatory products that should be available in T24 installation to enable TWS

SOAP UI

Summary



In this unit, you learnt 

How to implement WS-Security feature in TWS

Thank You

TEMENOS EDUCATION CENTRE Warning: This document, is protected by copyright law and international treaties. No part of this document m ay be reproduced or transm itted in any form or by any means, electronic or m echanical, for any purpose, without the express written permission of TEMENOS HEADQUARTERS SA Unauthorized reproduction or distribution of this presentation or any portion of it, may result in severe civil and criminal penalties, and will be prosecuted to the maximum extent possible under applicable law.” Information in this document is subject to change without notice