Get Roles from Oracle Entitlements Server

Contents

Overview

This filter enables you to get the set of roles that are assigned to an identity for a specific resource (for example, Web Service) and a specific action (for example, HTTP POST) from Oracle Entitlements Server (OES).

General

Configure the following general field:

Name:
Enter an appropriate descriptive name for this filter.

Settings

Configure the following fields on the Settings tab:

Resource:
Enter the URL of the target resource (for example, Web Service). Alternatively, if this policy is reused for multiple services, enter a URL using message attribute properties, which are expanded at runtime to the value of the specified attribute. For example:

  
${http.destination.protocol}://${http.destination.host}:${http.destination.port}${http.request.uri}

Resource Naming Authority:
Enter gatewayResource to match the Naming Authority Definition loaded in the Oracle Entitlements Server settings. For more details, see Oracle Security Service Module Settings.

Action:
Enter the HTTP verb (for example, POST, GET, DELETE, and so on). Alternatively, if this policy is reused for multiple services, enter a message attribute property, which is expanded at runtime to the value of the specified attribute (for example, ${http.request.verb}).

Action Naming Authority:
Enter gatewayAction to match the Naming Authority Definition loaded in the Oracle Entitlements Server settings. For more details, see Oracle Security Service Module Settings.

Application Context

Configure the following field on the Application Context tab:

Application's Current Context:
Click Add to specify optional Application Contexts as name-value pairs. Enter a Name and Value in the Properties dialog. Repeat to specify multiple properties.