Configuring Oracle WebLogic Server Domain for HTTP Basic Authentication

REST services on the JD Edwards EnterpriseOne AIS Server can use HTTP Basic Authentication for access. Support for HTTP Basic Authentication is enabled out of the box and is required to run the EnterpriseOne Orchestrator Client, create custom Java calls from orchestrations, and use the AIS client Java API (versions 1.2.1.x and higher).

If the AIS Server is deployed on Oracle WebLogic Server, Oracle WebLogic Server may require the following additional configuration depending on how you manage users:

• If you are maintaining a user registry in Oracle WebLogic Server that matches the user registry in EnterpriseOne, with identical sets of user names and passwords in each system, you do NOT need to modify your configuration.

• If you are NOT maintaining identical sets of users in Oracle WebLogic Server and EnterpriseOne, then you need to perform the following steps to modify your Oracle WebLogic Server configuration. This ensures that Oracle WebLogic Server will not intercept HTTP Basic Authentication credentials passed from the REST service.

  1. In the WebLogic Server domain for your AIS Server, in the Config directory, find the config.xml file.

  2. Add this configuration as the last line within the <security-configuration> element, just before the </security-configuration> tag:

     <enforce-valid-basic-auth-credentials>false</enforce-valid-basic-auth-credentials>

  3. Restart the AIS Server for the changes to take effect.

The following is an example of this configuration in the <security-configuration> element:

<node-manager-password-encrypted>{AES}tzAokzTHACTNNmkuutLPQEpP8bfk7Ble24vmoycooic=</node-manager-password-encrypted>
    <enforce-valid-basic-auth-credentials>false</enforce-valid-basic-auth-credentials>
  </security-configuration>
  <server>