1. Security Guide
  2. Password Storage

Password Storage

Third Party Authentication

To interact with third party tools and downstream applications the Oracle Transportation Management service stores passwords in a wallet.

Oracle Wallet

To securely store third party passwords, Oracle Transportation Management uses Oracle Wallet Manager. This wallet is a container used to store authentication, signing credentials and other secure information. It sits as a flat file outside of the database and service property files, holding encrypted information.

Oracle Transportation and Global Trade Management use a wallet to store passwords for holding customer specified passwords that are used to communicate with external third party tools and systems. These passwords may be modified by users as they only impact communication with one external system.

Screen Support

The following user interface fields contain third-party passwords:

  • Password field on External System
  • Password field on Report System
  • Password field on Printer
  • Password column in Web Service Endpoint list on Web Service
  • Password column on Content Management System

When a user enters or modifies one of these passwords, the password value is written to the Oracle Transportation Management Wallet. The database field holds a reference to the wallet key of the form:

{w<table name>:<primary key>

where the {w prefix denotes an indirect reference to a wallet key. E.g., the password for external system MYDOMAIN.TEST would be placed in the Oracle Transportation Management Wallet under key external_system:MYDOMAIN.TEST. The corresponding PASSWORD column in EXTERNAL SYSTEM would hold {wexternal_system|MYDOMAIN.TEST.

Property Support

A number of Oracle Transportation Management properties represent passwords. If a user has rights to edit properties in a property set, he can type them into the Value column of the Property Set screen. This screen knows which properties are passwords, to which wallet each password property belongs, and the corresponding wallet key for that wallet. The password entered by the user is stored in the proper wallet under the proper wallet key. The value stored in the database is a reference to the wallet key.

The following lists properties declared as password. Only users who have the DBA.ADMIN user role can modify these properties.

  • glog.RatingEngine.*.Password
  • glog.RatingEngine.*.License
  • glog.RatingEngine.*.Username
  • glog.ExternalDistanceEngine.*.Password
  • glog.ExternalDistanceEngine.*.Account
  • glog.ExternalDistanceEngine.*.Username
  • glog.ExternalDistanceEngine.*.AuthorizationKey
  • intelliroute.password
  • here.app_id
  • here.app_code
  • alk.api_key

Direct Wallet Access

There is no direct wallet access. All changes to the Oracle Transportation Management wallet must be performed via an Oracle Transportation Management screen.