| Oracle® Retail Integration Bus Cloud Service Security Guide Release 19.0.000 F22951-01 |
|
 Previous |
 Next |
| Oracle® Retail Integration Bus Cloud Service Security Guide Release 19.0.000 F22951-01 |
|
Previous |
Next |
Oracle Retail Integration Bus uses Web services for its integrations with Oracle Retail Management System. This appendix discusses security for the Web services.
The OASIS WS-Security specification is the open standard for Web services security. Its goal is to enable applications to secure SOAP message exchanges by providing encryption, integrity, and authentication support. WS-Security offers a general-purpose mechanism for associating security tokens with message content. The specification defines these approved token types:
Username Token Profile
X.509 Certificate Token Profile
Security Assertion Markup Language (SAML) Token Profile
Oracle Retail Management System Web services are protected using the WS-Security user authentication mechanism. Clients who want to access these Web services have to provide a valid user ID and password using a WS-Security Username Token.
Oracle Retail Integration Bus can communicate with both secured and unsecured Oracle Retail Management System Web services. If the Web service is secured, the Oracle Retail Integration Bus adds the Username Token to the request.
It is a new requirement from 16.0 onwards that the Weblogic domain for RIB deployment must be a JRF domain. To create a JRF domain it is required to setup RCU.
RIB Web services applications can be secured with policyA or policyC. The Weblogic 12.2.1.3 needs OWSM for Policy A and C to work. The owsm template choice while creating the weblogic domian, gives an option to deploy wsm-pm application to the admin server. The owsm policy manager (wsm-pm) is required for policies to work.
If http ports are disabled in the server, then wsm-pm app will not be reachable, unless wsm-pm is configured to use the SSL port. To configure the SSL port for wsm-pm, Oracle Enterprise Manager (EM) has to be deployed.
Refer Oracle Retail Integration Bus Installation Guide for more information on Weblogic domain creation and OWSM Policy Manager.
OWSM provides a policy framework to manage and secure the web service applications. The OWSM agent, policy manager, and repository are the main components of the OWSM architecture. The Oracle WSM Policy Manager (wsm-pm) manages all Oracle WSM policies and needs to be running to use the Oracle WSM policy framework. OWSM policy manager reads/writes the policies, including pre-defined and custom policies from the OWSM repository.
