Contents
Axway PassPort provides a central repository, identity broker, and security audit point for Axway Business-to-Business Integration (B2Bi) or Managed File Transfer (MFT) solutions. Axway PassPort centralizes and simplifies provisioning and management for your entire online ecosystem, enabling secure collaboration between applications, divisions, customers, suppliers, and regulatory bodies.
Axway Component Security Descriptor (CSD)
An Axway Component Security Descriptor (CSD) file is an XML file that defines resources, privileges, and roles for each component. For more details, see "Component Security Descriptor files" in the Axway PassPort 4.6 Administrators Guide. The Axway PassPort Authorization filter checks if the specified user has the privileges to perform the action on the specified resource. The CSD file defines the available actions that a resource supports. It may also define privileges and roles, which can also be created in the PassPort administration user interface.
This topic explains how to configure the settings in the Axway PassPort Authorization filter, which are used to configure integration between Axway PassPort and the API Gateway.
Specify the following settings to configure the Axway PassPort Authorization filter:
Name:
Enter an appropriate name for this filter.
User ID:
Enter the ID of the user to authorize. You can enter a static name or a selector that
specifies a message attribute. The selector is expanded at runtime to the value of the
message attribute. Defaults to ${authentication.subject.id}.
Resource:
Enter the name of the resource for which the user is seeking authorization. This resource
must have been defined in the <ResourceDefinition> in the PassPort
repository CSD. You can enter a static name or a selector that specifies a message
attribute. The selector is expanded at runtime to the value of the message attribute.
Defaults to ${http.request.uri}.
Action:
Enter the action being performed on the resource for which authorization is sought. This
action must have been defined in the <AvailableActions> section of the
PassPort repository CSD. You can enter a static name or a selector that specifies a message
attribute. The selector is expanded at runtime to the value of the message attribute.
Defaults to ${http.request.verb}.
PassPort Repository:
Select an existing connection to an Axway PassPort repository to use for authorization. To configure a connection in the Policy Studio tree, select External Connections -> Authentication Repository Profiles, right-click Axway PassPort Repository, and select Add a new Repository. For more details, see Axway PassPort Authentication Repository.
Further Information
For more details on specifying settings as selectors, see Selecting Configuration Values at Runtime.
