Extension SDK for BEA WebLogic Network Gatekeeper
The following section provides a description on how to create an example PolicyUtility:
The example uses the data provided by the PEP, a rule will extract the relevant data and call the Policy utility. The Policy utility uses a Subscriber Profile plug-in to do a look-up in the database if a subscriber with a certain address is registered in the database. If defined, the Policy utility will allow the requests, otherwise deny it. The Policy utility has the following properties:
DenySubscriberNotExists
myMethod
bea\wlng21\esdk\policy\rules\sp\ESPA_myservicecapability.ilr
This is general preparations. Do not perform these two steps if they already have been performed when creating the network plug-in as described in Creating an example network plug-in.
Edit the properties described in Adapting the build files for the modules on page 15-40 to reflect the desired names.
The Policy utility implementation is a singleton class, that provides the public methodsubscriberExists. This method is called from the rule.
exampleproj
\policy_util_impl\src\com\acompany\policy\util
to suit the specific needs. The template implementation uses a subscriber profile plug-in t check if a subscription exists, thus giving an example on how to interact with a subscriber profile plug-in and the plug-in manager.
This section describes how to install and deploy the Policy Utility that was created using the instructions in this section. For instructions on how to use the Management Tool in more detail, see WebLogic Network Gatekeeper User's Guide.
Note: If a Policy utility class has been changed and needs to be reinstalled, uninstall the Policy Utility using the methods deactivate, stop, and uninstall in the SLEE_deployment service via the Management Tool. Then, install the new Policy Utility using the procedure described above and restart the SLEE.
In order to load the rules that calls the Policy utility, follow the instructions in Install policy rules.
The rule uses the subscriber profile plug-in provided in bea\wlng21\esdk\lib\b_db_sp_resource.jar
.
Install this plug-in according to the schema described in Installing the Policy Utility. The Plug-in has the SLEE name Plugin_subscriber_profile_DB.
Via the Management Tool, use the OAM methods createSubscriber and deleteSubscriber in the SLEE service Plugin_subscriber_profile_DB to add and delete users from the database. The Policy utility checks if the user exists in this database.