Password Storage
Third Party Authentication
To interact with third party tools and downstream applications the Oracle Transportation Management service stores passwords in a wallet.
Oracle Wallet
To securely store third party passwords, Oracle Transportation Management uses Oracle Wallet Manager. This wallet is a container used to store authentication, signing credentials and other secure information. It sits as a flat file outside of the database and service property files, holding encrypted information.
Oracle Transportation and Global Trade Management use a wallet to store passwords for holding customer specified passwords that are used to communicate with external third party tools and systems. These passwords may be modified by users as they only impact communication with one external system.
Screen Support
The following user interface fields contain third-party passwords:
- Password field on External System
- Password field on Report System
- Password field on Printer
- Password column in Web Service Endpoint list on Web Service
- Password column on Content Management System
When a user enters or modifies one of these passwords, the password value is written to the Oracle Transportation Management Wallet. The database field holds a reference to the wallet key of the form:
{w<table name>:<primary key>
where the {w
prefix denotes an indirect
reference to a wallet key. E.g., the password for external system
MYDOMAIN.TEST
would be placed in the
Oracle Transportation Management Wallet under key
external_system:MYDOMAIN.TEST
. The
corresponding PASSWORD column in EXTERNAL
SYSTEM would hold
{wexternal_system|MYDOMAIN.TEST
.
Property Support
A number of Oracle Transportation Management properties represent passwords. If a user has rights to edit properties in a property set, he can type them into the Value column of the Property Set screen. This screen knows which properties are passwords, to which wallet each password property belongs, and the corresponding wallet key for that wallet. The password entered by the user is stored in the proper wallet under the proper wallet key. The value stored in the database is a reference to the wallet key.
The following lists properties declared as password. Only users who have the DBA.ADMIN user role can modify these properties.
- glog.RatingEngine.*.Password
- glog.RatingEngine.*.License
- glog.RatingEngine.*.Username
- glog.ExternalDistanceEngine.*.Password
- glog.ExternalDistanceEngine.*.Account
- glog.ExternalDistanceEngine.*.Username
- glog.ExternalDistanceEngine.*.AuthorizationKey
- intelliroute.password
- here.app_id
- here.app_code
- alk.api_key
Direct Wallet Access
There is no direct wallet access. All changes to the Oracle Transportation Management wallet must be performed via an Oracle Transportation Management screen.