For distributed platforms

Configuring TAI on the Liberty profile by using developer tools

You can configure a TAI service for the Liberty profile using developer tools.

Before you begin

For a description of the underlying process of configuring a server, and detailed information about specific aspects of server configuration, see Administering the Liberty profile manually.

Avoid trouble: Fix Pack 8550 There are several security configuration examples on the wasdev.net website for reference when configuring security for your applications on the Liberty profile.

Procedure

  1. Select Trust Association Interceptor Service and enter an Id name. In this example, the Id name is myTrustAssociation.
    This is a screen capture of adding a Trust Association Interceptor service.
  2. Select Trust Association Interceptor and configure the Id and the Class name which is the fully qualified name of your TAI implementation class, then click New button and select Top Level to enter the Shared Library information. In this example, the Id of your TAI is simpleTAI, class name is com.ibm.websphere.security.sample.SimpleTAI, Enable interceptor and Invoke an interceptor before SSO are checked.
    This is a screen capture of adding a Trust Association interceptor.
  3. Enter the ID for the shared Library in the pop-up panel and click OK. In this example, the Id corresponds to the name of the shared library is simpleTAI.
    This is a screen capture of adding a shared library.
  4. Configure the Name and Description fields for the shared library, then click New button and select Nested to add a Fileset reference as a nested element.
    This is a screen capture of configuring a nested shared library.
  5. Configure the Fileset Service Details by clicking Browse button in the Base Directory field and select the directory where the jar file is located. Then, click Browse button in the Includes pattern field to select your jar file that contains your TAI implementation. In this example, the TAI implementation jar file is simpleTAI.jar and located under the ${server.config.dir} directory.
    This is a screen capture of locating the TAI implementation jar file.
  6. Configure Interceptor properties Details by clicking Add button to add properties for the interceptor. In this example, there are two pairs of properties for the interceptor. The hostName is machine1 and the application is test1.
    This is a screen capture of configuring interceptor properties.
  7. Save the configuration. You can find the following configuration saved in the server.xml file. 
    <trustAssociation id="myTrustAssociation" invokeForUnprotectedURI="false" 
                  failOverToAppAuthType="false"> 
    <interceptors id="simpleTAI" enabled="true"  
                  className="com.ibm.websphere.security.sample.SimpleTAI" 
                  invokeBeforeSSO="true" invokeAfterSSO="false" libraryRef="simpleTAI"> 
        <properties hostName="machine1" application="test1"/> 
    </interceptors> 
</trustAssociation> 

<library id="simpleTAI"> 
    <fileset dir="${server.config.dir}" includes="simpleTAI.jar"/> 
</library>
Parent topic: Configuring TAI for the Liberty profile

Icon that indicates the type of topic Task topic
Terms and conditions for information centers | Feedback


Timestamp icon Last updated: Wednesday, 22 May 2013
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=phil&product=was-nd-mp&topic=t_sec_tai
File name: t_sec_tai.html