Identity Service
Sometimes in BPEL processes we will need to authenticate and authorize users, particularly if we use the Workflow service. The Identity service is a web service layer on top of the Oracle JAAS (Java Authentication and Authorization Service) Provider. The Identity service provides access to the application server security infrastructure through the web services layer, using a set of extension functions for XPath expressions.
The Identity service is used to perform authentication, authorization, and retrieve user properties, such as contact information, email, phone, etc. It supports three types of security providers:
JAZN (Java Authorization) provider, which can be XML-based or LDAP-based:
XML-based JAZN provider uses the
user-properties.xmlandjazn-data.xmlfiles in theC:\OraBPELPM_1\integration\orabpel\system\services\configdirectory.LDAP-based JAZN provider is based on the Oracle Internet Directory.
Third-party LDAP providers , such as Microsoft Active Directory,...
