Databases Reference
In-Depth Information
We can filter the available policies by editing the search settings and pressing the
green arrow to the right of the search criteria to apply the filter.
We need to add an authentication policy to extract credentials from the inbound
message. We choose the
oracle/wss_username_token_service_policy
, which
extracts a username and a password from a Web Services Security (WSS) standard
header. This policy will reject any requests to the operation that do not have a valid
username and password in a WSS header. The username and password will be
verified against the WebLogic user base, which will normally point to an LDAP
server. The policy is attached by selecting it and pressing the
Attach
button.
Having added the authentication policy, we have restricted access to only
authenticated users. The next step is to apply our newly created authentication
policy to restrict access only to users in the
Western Region
group. Having added
the policies that we want to the list, we can apply them by clicking
OK
. This will take
effect immediately.
