Run web service under authenticated user ID
What is it?
You can now run web service implementation code under an authenticated user profile. In order to run a web service under an authenticated user profile, you need to do two things.
First, you need to enable HTTP basic authentication in the HTTP server associated with the integrated web services server.
Second, you need to indicate that the web service implementation code is to be run under an authenticated user profile. The Web Administration GUI is updated to support specifying a user ID value of *AUTHENTICATED. The QShell script /QIBM/ProdData/OS/WebServices/bin/setWebServiceProperties.sh also has support. The following is an example of setting the user ID to *AUTHENTICATED:
setWebServiceProperties.sh -server WSERVICE1 -service myservice -userid *AUTHENTICATED
The user profile that the server is running under must be authorized to use any authenticated user IDs.
Why use it?
Previous to this enhancement, you had to specify a single user profile to run the web service implementation code and the web service implementation code needed to implement a way to ensure the client request is allowed to do perform the request.
The support is enabled in the following PTFs:
**NOTE: Web services deployed before this PTF need to be redeployed to pick up this enhancement.
30 December 2019