cancel
Showing results for 
Search instead for 
Did you mean: 

Approaches for Authentication through Web Services

Former Member
0 Kudos

Hi All,

I am calling a webservice through my portal service. This web service is on the (DI) Data Integration box which is not SAP.

I need to know approaches with which I can authenticate users when they use this webservice call. I mean how do I authenticate users who will be using this application which will call a web service on the DI box.

So when the user clicks on the submit button, this web service on the DI box is invoked, I want to authenticate users at this point, so that no unauthorized users are able to post data to DI box.

Also, I do not want any kind of login window popping up. It should be something like a SSO.

Please auggest approaches that I can use.

Thanks

Accepted Solutions (0)

Answers (3)

Answers (3)

former_member193769
Active Contributor
0 Kudos

Hi,

Check this,

CA is Certificate Authority.

You need to configure SSL.

http://www.pfitz1000.com/Samples/SecuritySolution_in_Detail.pdf

I am also having the same requirement.

I am in search of a easy way to authenticate.

Thanks and Regards,

gopal

Former Member
0 Kudos

HI Gopala,

I have gone through the pdf. My requirement is a little different. Instead of authenticating the users on the portal, I wan to authenticate them on the Data Integration box.

It will be something like this:

Step 1. User logs on the portal.

Step 2. User uses my custom applicatioon that calls a webservice.

Step 3. When the webservice is being called (after the user clicks on the submit button), I want to ensure that authorized users are using this application and also that authorized users are posting the data to the Data Integration box, which is IBM data stage.

Step 4. When the request reaches the datastage box, it authenticates the user before posting the data.

Step 5. If the user is valid, the data is posted, if not, a message is returned saying "Unauthorized".

I know that the authentication logic will be in IBM Datastage (Data Integration box) but what my question is that how do I pass the userid and password of the logged in user in the portal to Data Integration box through the webservice.

Im calling the webservice exposed by the Data Integration box through my portal service.

Are there any other way for authenticating the users? I read that I could use Public Key Infrastructure (PKI) or digital certificates, but again, how do I use this mechanism.

Any suggestion or direction will be of great help.

Thanks,

S.B

former_member193769
Active Contributor
0 Kudos

Friend,

Check this document.

Create a user authentication using a certificate for an existing Web service.

https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/4cc3a80d-0301-0010-d1ae-bb1cea09...

Thanks and Regards,

gopal

Former Member
0 Kudos

Hi Gopala,

Thanks, Im think now Im moving in the right direction with your help. Here is one more question that I have:

In the pdf the second prerequisite says:


You have the certificate used by the client for authentication and the certificate of the corresponding CA in the form of crt files.

1 Where do I get this certificate from? I do not have any certificate.

2. What is CA in the above statement.

Thanks,

S.B

former_member193769
Active Contributor
0 Kudos

Hi,

Try this in DI where you declare your inspection.wsil,below you will be having some sort of authendication settings in visual administrator.

Thanks and Regards,

gopal

Former Member
0 Kudos

Hi Gopala,

Im having difficulty trying to understand your previous post. Kindly elaborate on what you mean and help.

Thanks