manualshive.com logo in svg

Sun Microsystems SUN SEEBEYOND eWAY 5.1.1, User Manual

Share
Download
Sun Microsystems SUN SEEBEYOND eWAY 5.1.1 User Manual Download Page 38

Chapter 4

Section 4.4

Operating SSL

Using the OpenSSL Utility

HTTPS eWay Adapter User’s Guide

38

Sun Microsystems, Inc.

create an initial serial number file used for tracking certificate signing. This 
certificate will be valid for 365 days.

4

keytool -import -keystore clientkeystore -file client.cer

-alias client

Enter keystore password: seebeyond
keytool error: java.lang.Exception: Failed to establish chain from

reply

You get an exception because there is no certificate chain in the client certificate so 
we have to import the CA’s certificate into the 

KeyStore

 first. You can then import 

the client.cer itself to form a certificate chain. You need the following steps:

5

keytool

-import

-keystore clientkeystore

-file CA

ca-certificate.pem.txt

-alias theCARoot

Enter keystore password:

seebeyond

Owner: [email protected], CN=development.seebeyo
nd.com, OU=Development, O=SeeBeyond, L=Monrovia, ST=California, C=US
Issuer: [email protected], CN=development.seebey
ond.com,
OU=Development, O=SeeBeyond, L=Monrovia, ST=California, C=US
Serial number: 0
Valid from: Tue May 08 15:09:07 PDT 2001 until: Wed May 08

15:09:07 PDT 2002

Certificate fingerprints:
MD5:

60:73:83:A0:7C:33:28:C3:D3:A4:35:A2:1E:34:87:F0

SHA1: C6:D0:C7:93:8E:A4:08:F8:38:BB:D4:11:03:C9:E6:CB:9C:D0:72:D0
Trust this certificate? [no]:

yes

Certificate was added to keystore

6

keytool –import –keystore clientkeystore –file

client.cer –alias

client

Enter keystore password: seebeyond
Certificate reply was installed in keystore

Now that we have a private key and an associating certificate chain in the 

KeyStore

 

clientkeystore

, we can use it as a 

KeyStore

 for client (eWay) authentication. The 

only warning is that the CA certificate must be imported into the trusted certificate 
store of the Web server to which you will be connecting. Moreover, the Web server 
must be configured for client authentication (

httpd.conf

 for Apache, for example).

This appendix contains the contents of the 

openssl.cnf file

 that can be used on 

Windows. Be sure to make the appropriate changes to the directories.

4.4.3

Windows OpenSSL.cnf File Example

This section contains the contents of the 

openssl.cnf file

 that can be used on Windows. 

Be sure to make the appropriate changes to the directories.

#
# SSLeay example properties file.

Summary of Contents for SUN SEEBEYOND eWAY 5.1.1

Page 1: ...SUN SEEBEYOND eWAY HTTPS ADAPTER USER S GUIDE Release 5 1 1 ...

Page 2: ...054 Etats Unis Tous droits réservés Sun Microsystems Inc détient les droits de propriété intellectuels relatifs à la technologie incorporée dans le produit qui est décrit dans ce document En particulier et ce sans limitation ces droits de propriété intellectuelle peuvent inclure un ou plus des brevets américains listés à l adresse http www sun com patents et un ou les brevets supplémentaires ou le...

Page 3: ...HTTPS eWay Javadoc 13 Scope 13 Intended Audience 13 Text Conventions 13 Related Documents 14 Sun Microsystems Inc Web Site 14 Documentation Feedback 14 Chapter 2 Installing the HTTPS eWay 15 HTTPS eWay System Requirements 15 Installing the HTTPS eWay 15 Installing the HTTPS eWay on an eGate supported system 16 Adding the eWay to an Existing Sun Java Composite Application Platform Suite Installatio...

Page 4: ...Store 32 SSL Handshaking 33 Using the OpenSSL Utility 36 Creating a Sample CA Certificate 36 Signing Certificates With Your Own CA 37 Windows OpenSSL cnf File Example 38 Chapter 5 Configuring the HTTPS eWay 41 Creating and Configuring the HTTPS eWay 41 Configuring the eWay Connectivity Map Properties 41 Configuring the eWay Environment Properties 43 eWay Connectivity Map Properties 44 Configuring ...

Page 5: ... 76 Defining the Business Process 76 Binding the eWay Components 77 Creating an Environment 78 Configuring the eWays 79 Configuring the HTTPS eWay Properties 79 Configuring the Integration Server 80 Creating and Activating the Deployment Profile 80 Creating and Starting the Domain 81 Building and Deploying the Project 82 Running the Sample 82 Building and Deploying the prjHTTPServer_BPEL Sample Pr...

Page 6: ...02 Creating an Environment 103 Configuring the eWays 103 Creating and Activating the Deployment Profile 104 Creating and Starting the Domain 104 Building and Deploying the Project 104 Running the Sample 104 Building and Deploying the prjHTTPServer_JCD Sample Project 104 Project Overview 105 Project Forms 106 Project Operations 107 Creating a Project 107 Creating the OTD 108 Creating the Collaborat...

Page 7: ... 13 Sun Microsystems Inc Web Site on page 14 Documentation Feedback on page 14 1 1 About HTTP and HTTPS HTTP HTTP hypertext transfer protocol is the set of rules used for transferring files text graphic images sound and video over the Web When a user opens a Web browser the user is indirectly making use of HTTP HTTP is an application protocol that runs on top of the TCP IP suite of protocols In ad...

Page 8: ...ssage header is composed of a header line header fields a blank line and an optional body or data payload The response is made up of a header line header fields a blank line and an optional body or data payload HTTP is a synchronous protocol that is a client makes a request to a server and the server returns the response on the same socket 1 2 2 Web Browser Cookies A cookie is an HTTP header which...

Page 9: ... URL encoded query string http bin query p seebeyond integrator The URL specifies the search page and the name value pair for the search The question mark indicates the beginning of the name value pair encoding In the previous example the name portion of the query is p and the value to search is seebeyond integrator A query can consist of one or more of these name value pairs Note See the official...

Page 10: ...h1 more file contents body html After sending the response the server closes the socket 1 2 5 Sample HTTP Exchange in Server Mode To listen for a request from an HTTP client the HTTPS eWay in server mode listens on the port configured for your Integration Server 18001 by default The HTTPS eWay receives the request and processes it according to the logic you create in your Collaboration or Business...

Page 11: ...according to the logic in the Collaboration or Business Process Figure 2 Sample Response 1 3 What s New in This Release The HTTPS eWay includes the following changes and new features Version Control An enhanced version control system allows you to effectively manage changes to the eWay components Manual Connection Management Establishing a connection can now be performed automatically configured a...

Page 12: ...ntegrator User s Guide or the Sun SeeBeyond eGate Integrator System Administration Guide 1 4 About This Document This guide includes the following chapters Chapter 1 Introducing the HTTPS eWay Provides an overview description of the product as well as high level information about this document Chapter 2 Installing the HTTPS eWay Describes the system requirements and provides instructions for insta...

Page 13: ...r a reference of available HTTPS eWay Java methods see the associated Javadoc 1 4 2 Intended Audience This guide is intended for experienced computer users who have the responsibility of helping to set up and maintain a fully functioning Java Composite Application Platform Suite system This person must also understand any operating systems on which the Java Composite Application Platform Suite wil...

Page 14: ...tform Suite product Sun SeeBeyond eGate Integrator Sun Java Composite Application Platform Suite Installation Guide 1 6 Sun Microsystems Inc Web Site The Sun Microsystems web site is your best source for up to the minute product news and technical support information The site s URL is http www sun com 1 7 Documentation Feedback We appreciate your feedback Please send any comments or suggestions re...

Page 15: ...TTPeWayDocs sar and can be accessed from the Documentation tab of the Sun Java Composite Application Platform Suite Installer Refer to the HTTPS eWay Readme for the latest requirements before installing the HTTPS eWay 2 2 Installing the HTTPS eWay The Sun Java Composite Application Platform Suite Installer a web based application is used to select and upload eWays and add on files during the insta...

Page 16: ...Select Sun Java Composite Application Platform Suite Products to Install box 4 From the Selecting Files to Install box locate and select your first product s SAR file Once you have selected the SAR file click Next Follow this procedure for each of your products The Installing Files window appears after the last SAR file has been selected 5 From the Installing Files window review the product list I...

Page 17: ...igned to provide you with a basic understanding of how certain database operations are performed using the eWay while Javadocs provide a list of classes and methods exposed in the eWay Steps to extract the Javadoc include 1 Click the Documentation tab of the Sun Java Composite Application Platform Suite Installer then click the Add ons tab 2 Click the HTTPS eWay Adapter link Documentation for the ...

Page 18: ...ur Project in the ZIP file field 6 Click Export to create the Project ZIP file in the selected destination Install Java CAPS 5 1 1 1 Install the Java CAPS 5 1 1 including all eWays libraries and other components used by your ICAN 5 0 Projects 2 Start the Java CAPS 5 1 1 Enterprise Designer Import the Project 1 From the Java CAPS 5 1 1 Enterprise Designer s Project Explorer tree right click the Rep...

Page 19: ...pears B Set the inbound and outbound directory values and click OK The File External System can now accommodate both inbound and outbound eWays 3 Deploy your Projects Note Only projects developed on ICAN 5 0 2 and later can be imported and migrated successfully into the Java Composite Application Platform Suite 2 4 Installing Enterprise Manager eWay Plug Ins The Sun SeeBeyond Enterprise Manager is...

Page 20: ...nager An alert is triggered when a specified condition occurs in a Project component The purpose of the alert is to warn the administrator or user that a condition has occurred To View the eWay Alert Codes 1 Add the eWay Enterprise Manager plug in for this eWay 2 From the Enterprise Manager s Explorer toolbar click configuration 3 Click the Web Applications Manager tab and go to the Manage Alert C...

Page 21: ...or establishing the connection to the HTTP server Occurs when a socket connection does not exist Verify that network connectivity is available HTTPCLIENTEWAY GET FAILED000004 Failed on HTTP GET request to URL 0 Occurs when an HTTPS operation is not successful Read the response code in the collaboration and proceed accordingly Run the operation from a web browser HTTPCLIENTEWAY POST FAILED000005 Fa...

Page 22: ... eWay OTD template is not customizable and cannot be edited The basic parts of an OTD are Element This is the highest level in the OTD tree The element is the basic container that holds the other parts of the OTD The element can contain fields and methods Field Fields are used to represent data A field can contain data in any of the following formats string boolean int double or float Method Metho...

Page 23: ...ods used in HTTP data exchange get The method called in the Collaboration Java to send an HTTP get request to an HTTP server post The method called in the Collaboration Java to send an HTTP post request to an HTTP server getRequest The method called in the Collaboration Java for other request related helper methods such as to set the URL to add properties etc getResult The method called in the Col...

Page 24: ...Chapter 3 Section 3 3 Understanding the HTTPS eWay OTD HTTPS Server OTD HTTPS eWay Adapter User s Guide 24 Sun Microsystems Inc Figure 4 Input Server Request Node ...

Page 25: ...n your HTTPS Collaborations The HTTP response is not sent back to the HTTP client until sendResponse method is called on the HTTP server input OTD Figure 6 sendResponse Method It is critical that you use this method to send the response back to the client Otherwise the client will wait indefinitely for the response HTTP requires that a response be sent to the client whether the response is a valid...

Page 26: ... retrieves the HTTP method from the Request node via the Method property creates an HTML response indicating the HTTP method retrieved from the request sets the ContentType property as text html on the Response node sets the Text property with the HTML response and then calls the sendResponse method on the HTTP server input OTD to send the constructed response to the HTTP client Figure 7 sendRespo...

Page 27: ...n This Chapter Overview on page 27 KeyStores and TrustStores on page 29 SSL Handshaking on page 33 Using the OpenSSL Utility on page 36 4 1 Overview The use of SSL with HTTP here called HTTPS enables HTTP data exchanges that are secure from unauthorized interception from hackers or other entities The eWay s SSL feature provides a secure communications channel for the data exchanges see Figure 8 ...

Page 28: ...ever some implementations may not support a particular algorithm The JSSE 1 0 3 application programming interface API is capable of supporting SSL versions 2 0 and 3 0 and Transport Layer Security TLS version 1 0 These security protocols encapsulate a normal bidirectional stream socket and the JSSE 1 0 3 API adds transparent support for authentication encryption and integrity protection The JSSE r...

Page 29: ...is recommended as the TrustStore for the HTTPS eWay Both KeyStores and TrustStores are managed by means of a utility called keytool which is a part of the Java SDK installation 4 2 1 Generating a KeyStore and TrustStore This section explains steps on how to create both a KeyStore and a TrustStore or import a certificate into an existing TrustStore such as the default Logical Host TrustStore in the...

Page 30: ...nia What is the two letter country code for this unit Unknown US Is CN Foo Bar OU Development O SeeBeyond L Monrovia ST California C US correct no yes Enter key password for client RETURN if same as keystore password If the KeyStore password is specified then the password must be provided for the eWay Press RETURN when prompted for the key password this action makes the key password the same as th...

Page 31: ...cate keytool import keystore clientkeystore file CARootcer alias theCARoot 2 The following command imports the client s certificate signed by the CA whose certificate was imported in the preceding step keytool import keystore clientkeystore file client cer alias client The generated file clientkeystore contains the client s private key and the associated certificate chain used for client authentic...

Page 32: ...citer options must be specified to allow the generated KeyStore to be recognized properly by JSSE 4 2 3 TrustStores Creating a TrustStore For demonstration purposes suppose you have the following CAs that you trust firstCA cert secondCA cert thirdCA cert located in the directory C cascerts You can create a new TrustStore consisting of these three trusted certificates To create a new TrustStore Use...

Page 33: ...stedcacertsjks TrustStore If you are importing certificates into an existing TrustStore use keytool import file C cacerts secondCA cert alias secondCA keystore trustedcacertsjks Once you are finished trustedcacertsjks can be used as the TrustStore for the eWay 4 3 SSL Handshaking There are two options available for setting up SSL connectivity with a Web server Server side Authentication The majori...

Page 34: ...equests a certificate from the eWay The eWay then sends its certificate to the Web server The server in turn authenticates the eWay by looking into its TrustStore for a matching trusted CA certificate The communication channel is established by the process of both parties requesting certificate information This option is illustrated in Figure 10 Client eWay Server Web Server Handshake Finished Cha...

Page 35: ...ual Authentication Client eWay Server Web Server Handshake Finished ChangeCipherSpec Handshake ServerHelloDone Handshake Certificate Handshake ServerHello Handshake Client Hello Handshake ClientKeyExchange ChangeCipherSpec Handshake Finished Handshake Certificate Handshake CertificateVerify Handshake CertificateRequest ...

Page 36: ...onal funds to have a commercial CA sign test certificates a sample is generated and used to sign the test certificate Perform the following operations from the command line openssl req config c openssl bin openssl cnf new x509 keyout ca key pem txt out ca certificate pem txt days 365 Using properties from c openssl bin openssl cnf Loading screen into random state done Generating a 1024 bit RSA pri...

Page 37: ...age 29 Note No details are given here for the keytool commands See Creating a KeyStore in JKS Format on page 29 for more information To create a CSR with keytool and generate a signed certificate for the CSR 1 keytool keystore clientkeystore genkey alias client Enter keystore password seebeyond What is your first and last name Unknown development seebeyond com What is the name of your organization...

Page 38: ...T California C US Serial number 0 Valid from Tue May 08 15 09 07 PDT 2001 until Wed May 08 15 09 07 PDT 2002 Certificate fingerprints MD5 60 73 83 A0 7C 33 28 C3 D3 A4 35 A2 1E 34 87 F0 SHA1 C6 D0 C7 93 8E A4 08 F8 38 BB D4 11 03 C9 E6 CB 9C D0 72 D0 Trust this certificate no yes Certificate was added to keystore 6 keytool import keystore clientkeystore file client cer alias client Enter keystore ...

Page 39: ...tensions The extentions to add to the cert default_days 365 how long to certify for default_crl_days 30 how long before next CRL default_md md5 which md to use preserve no keep passed DN ordering A few difference way of specifying how similar the request should l ook For type CA the listed attributes must be the same and the option al and supplied fields are just that policy policy_match For the C...

Page 40: ...ional Unit Name eg section commonName Common Name eg your website s domain name commonName_max 64 emailAddress Email Address emailAddress_max 40 req_attributes challengePassword A challenge password challengePassword_min 4 challengePassword_max 20 x509v3_extensions Note The following copyright notices apply Copyright 1998 2001 The OpenSSL Project All rights reserved Copyright 1994 2002 World Wide ...

Page 41: ...tem The HTTPS eWay configuration parameters are modified from two locations From the Connectivity Map which contains parameters specific to the HTTPS eWay and may vary from other eWays of the same type in the Project From the Environment Explorer tree which contains global parameters that commonly apply to all eWays of the same type in the Project Saved parameters are shared by all eWays in the HT...

Page 42: ...ctivity Map To configure the HTTPS eWay properties 1 On the Enterprise Designer s Connectivity Map double click the HTTPS eWay icon Figure 11 Connectivity Map with Components Client The eWay Properties window appears displaying the default properties for the eWay Figure 12 eWay Properties Client To configure the HTTPS Server eWay properties 1 On the Enterprise Designer s Connectivity Map double cl...

Page 43: ...HTTPS Server eWay Figure 14 eWay Properties Server 5 3 Configuring the eWay Environment Properties The eWay Environment Configuration properties contain parameters that define how the eWay connects to and interacts with other eGate components within the Environment When you create a new HTTPS External System you may configure the type of External System required Available External System propertie...

Page 44: ...ent see the Sun SeeBeyond eGate Integrator Tutorial 3 Right click the External System created for the HTTPS Project and select Properties from the list box The Environment Configuration Properties window appears Figure 15 HTTPS eWay Environment Configuration 4 Click on any folder to display the default configuration properties for that section 5 Click on any property field to make it editable Afte...

Page 45: ...nal system 5 4 2 Configuring the Connectivity Map HTTPS Server eWay Properties The HTTPS Server eWay Properties include parameters used by the external system Table 3 HTTP eWay HTTP Settings Name Description Required Value Allow Cookies Specifies whether cookies sent from servers are allowed to be stored and sent on subsequent requests If cookies are not allowed sessions are not supported True or ...

Page 46: ...t URL The client uses this URL value to access the server The property value must be the servlet name for example HttpServerServlet An example of a valid servlet URL is http localhost 18001 Deployment1_servlet_HttpServerServlet HttpServerServlet where the URL value comprises several components as follows localhost The name of the machine on which your current Logical Host is running 18001 The port...

Page 47: ...ption Required Value URL Specifies the default URL to be used for establishing an HTTP or HTTPS connection When a URL is not assigned to the HTTP OTD the default value is used as the URL for both the GET and POST commands See GET and POST Methods on page 9 If https protocol is specified SSL must be enabled See Table 8 on page 50 A valid URL You must include the full URL For example http www sun co...

Page 48: ...where all requests are sent to a proxy even if they are local Proxy Configuration includes the configuration parameters listed in Table 6 Content Type The default Content type header value to include when sending a request to the server If no value is specified a default value of application x www form urlencoded is supplied by the eWay Important A change of the configuration value will only alter...

Page 49: ...on and SSL connections They include the following configuration sections Authentication SSL Proxy Port Specifies the port of the HTTPS proxy This specifies the HTTPS proxy port to which requests to an HTTP server or reception of data from an HTTP server may be delegated to a proxy This sets the proxy port for secured HTTP connections A valid HTTPS proxy port The default is 8080 Proxy Username Spec...

Page 50: ...cifies the password used for authenticating the web site specified by the URL A valid password Important Be sure to enter a value for the HTTP username properties before entering this property Table 8 Environment Configuration Security SSL Name Description Required Value Protocol SSL The SSL protocol to use when establishing an SSL connection with the server If the protocol is not set by this meth...

Page 51: ...e is used for key certificate management when establishing an SSL connection If the default KeyStore type is not set by this method the default KeyStore type JKS is used KeyStore Specifies the default KeyStore file The keystore is used for key certificate management when establishing SSL connections A valid package location There is no default value It is recommended to use c JavaCAPS logicalho st...

Page 52: ...t TrustStore Type The TrustStore type of the TrustStore used for CA certificate management when establishing SSL connections If the TrustStore type is not set by this method the default TrustStore type JKS is used A valid TrustStore type TrustStore Specifies the default TrustStore The TrustStore is used for CA certificate management when establishing SSL connections A valid TrustStore name There i...

Page 53: ...ned on Note If you use an incomplete domain host name for example https localhost 444 you can get the exception java io IOException HTTPS hostname wrong You must use a complete domain host name for example https localhost stc com 444 5 5 5 Connection Pool Settings Connection Pool Settings include the configuration parameters listed in Table 9 Table 9 Environment Configuration Connection Pool Setti...

Page 54: ...tion of that request If more simultaneous requests are received than can be handled by the currently available request processing threads additional threads are created This number is limited by the configured maximum If still more simultaneous requests are received they are queued inside the server socket created by the HTTP listener up to the configured maximum Any further simultaneous requests ...

Page 55: ...de What s in This Chapter eInsight Engine and Components on page 55 HTTPS eWay With eInsight on page 56 About the HTTPS eWay eInsight Sample Projects on page 58 Importing a Sample Project on page 58 Building and Deploying the prjHTTPClient_BPEL Sample Project on page 59 Building and Deploying the prjHTTPServer_BPEL Sample Project on page 83 6 1 eInsight Engine and Components eGate components can b...

Page 56: ...tions allowed vary depending on whether you are using the Receive or Reply functions These actions allow you to perform operations in the same way as making calls using Java methods Table 10 explains the functions of these nodes Table 10 Receive Business Rule Designer Output Nodes Node Name Description authType Gets or sets the name of the authentication scheme used to protect the servlet byteArra...

Page 57: ...ernet Protocol IP address of the client that sent the message remoteHost Gets or sets the fully qualified name of the client that sent the message remoteUser Gets or sets the log in of the user making this request if the user has not been authenticated requestedSessionId Gets or sets the session ID specified by the client requestURI Gets or sets the part of this message s URL from the protocol nam...

Page 58: ...oaded from the Sun Composite Application Platform Suite Installer s Documentation tab The HTTPS_eWay_Sample zip file contains the various sample Project ZIP files and sample data Extract the samples to a local file 2 Save all unsaved work before importing a Project 3 From the Enterprise Designer s Project Explorer pane right click the Repository and select Import from the shortcut menu The Import ...

Page 59: ...g the eWays on page 79 Creating and Activating the Deployment Profile on page 80 Creating and Starting the Domain on page 81 Building and Deploying the Project on page 82 Running the Sample on page 82 6 5 1 Project Overview The client HTTPS eWay sample Project with an eInsight Business Process demonstrates how the HTTPS eWay uses the GET and POST commands to request and receive data from a specifi...

Page 60: ...o a Business Process HttpBpelService HttpBpelService Sends instructions to the desired HTTP system via the HTTPS eWay HttpBpelService also receives the information from the HTTPS system via the HTTPS eWay then sends it to a File eWay FileOut HTTP_CLIENT The HTTP client external application or system the HTTPS eWay handles inbound and outbound communication with this system FileOut The external fil...

Page 61: ...s for a GET or POST command URL Defines the address of the target HTTP server Data Stores the name value pair used in the POST command you can use as many name value pairs as you need Instead of getting and posting relative to an external Internet site this Business Process sample uses the eGate Integration Server and does these operations internally If external Internet access is available you ca...

Page 62: ... Inc The OTD Wizard Selection window appears See Figure 17 Figure 17 OTD Wizard Selection 2 From the OTD Wizard Selection window select DTD from the OTD Wizard column Click Next 3 From the Include DTDs to Selected List window browse to the MultipleData_In dtd located in the sample folder Click Select 4 The MultipleData_In dtd file appears in the Selected DTD Files pane See Figure 18 ...

Page 63: ...and Deploying the prjHTTPClient_BPEL Sample Project HTTPS eWay Adapter User s Guide 63 Sun Microsystems Inc Figure 18 Include DTDs to Selected List 5 Click Next 6 From the Select Document Elements section select MultipleData_In_website and click Next The OTD Options screen appears ...

Page 64: ...ure 19 OTD Options 7 From the OTD Options screen leave all the OTD options unchecked and click Finish A Message dialog box appears if the OTD is successfully created The OTD appears in the Project Explorer as the OTD icon MultipleData_In_website 6 5 4 Creating a Business Process The next step is to create the Project s Business Process The logic of the Business Process is shown in Figure 20 ...

Page 65: ...ness Process This scenario sets up two possible decisions called Cases in eInsight If the inbound file requests a GET operation it is routed to Case 1 If the inbound file requests a POST operation it is routed to Case 2 Table 11 shows how these cases operate of this Business Process Is method is GET or POST Execute a POST command Execute GET command Copy to print line Send to Collaboration GET POS...

Page 66: ...e MultipleData_In_website OTD 3 Arrange the Start and End icons at opposite sides of the canvas then drag the following icons onto the canvas From the Project Explorer HTTP eWay server One get icon One post icon File eWay One receive icon Two write icons MultipleData_In_website unmarshal OTD icon From the Business Process canvas toolbar Decision a Decision End icon also appears Two Business Rule i...

Page 67: ... icons on the canvas as shown in Figure 22 Figure 22 Business Process With Links Client Two Case icons appear between the Decision Gate and each of your Business Rule icons 6 You must add additional Link Business Rules represented by a small blue star shaped icons to the appropriate links To do this operation right click on the desired link and choose Add Business Rule from the pop up menu See Fig...

Page 68: ...gs you want in the Business Rule Designer 7 Select the Link Business Rule on the left then click the Map Business Process Attributes icon in the toolbar The Business Rule Designer pane appears at the bottom of the window Use the Business Rule Designer to create your Business Rules 8 Set properties For this Link Business Rule by dragging the text node from the Output pane and dropping it onto the c...

Page 69: ... and Deploying the prjHTTPClient_BPEL Sample Project HTTPS eWay Adapter User s Guide 69 Sun Microsystems Inc Figure 24 Business Rule Designer First Link Business Rule 9 In the same way as you did previously create additional Link Business Rules as shown in Figure 25 and Figure 26 ...

Page 70: ...Implementing the HTTPS eWay BPEL Sample Projects Building and Deploying the prjHTTPClient_BPEL Sample Project HTTPS eWay Adapter User s Guide 70 Sun Microsystems Inc Figure 25 Business Rule Designer Second Link Business Rule ...

Page 71: ...ness Rule Designer Third Link Business Rule 10 In addition you must set properties for the Business Rule icon components Select the desired Business Rule icon component to open the Business Rule Designer Figure 27 Using the Business Rule Designer in the same way as you did previously set properties for the Business Rule icon component for Case 1 by dragging and dropping the nodes as shown in Figur...

Page 72: ...nd Deploying the prjHTTPClient_BPEL Sample Project HTTPS eWay Adapter User s Guide 72 Sun Microsystems Inc Figure 27 Business Rule Designer Case 1 Business Rule 11 Set properties For the Business Rule icon component for Case 2 by dragging and dropping the nodes as shown in Figure 28 ...

Page 73: ... to set the Decision Gate properties for the cases The Decision Gate Properties dialog box opens 13 For Case 1 add a string literal by dragging the icon from the toolbar Call the literal GET 14 By dragging the icon from the toolbar add an EQUAL 15 Drag Method under MultipleData_In_with_top_website unmarshal Output to any1 under EQUAL in the left pane 16 Drag GET under string literal to any2 17 Dra...

Page 74: ... Properties Dialog Box Case 1 18 For Case 2 add a string literal by dragging the icon from the toolbar Call the literal POST 19 By dragging the icon from the toolbar add an EQUAL 20 Drag Method under MultipleData_In_with_top_website unmarshal Output to any1 under EQUAL in the left pane 21 Drag POST under string literal to any2 22 Drag return boolean under EQUAL to Result boolean in the right pane ...

Page 75: ...fine one or more of the eGate Services on your Connectivity Map 6 5 5 Creating a Connectivity Map A Connectivity Map provides a canvas for assembling and configuring a Project s components The prjHTTPClient_BPEL Project only uses one Connectivity Map To create a Connectivity Map 1 From the Project Explorer tree right click the new prjHTTPClient_BPEL Project and select New Connectivity Map from the...

Page 76: ...to the Connectivity Map toolbar Populating the Connectivity Map Add the Project components to the cmHTTPClient Connectivity Map by dragging the icons from the toolbar to the canvas For this sample Project drag and drop the following components onto the Connectivity Map canvas File External System 2 Business Service a service is a container for Java Collaborations Business Processes and so forth HT...

Page 77: ... double click the HttpBpelService Business Process The HttpBpelService Binding dialog box appears 2 From the HttpBpelService Binding dialog box map FileSender under Implemented Services to the FileClientIN File External Application To do this click on FileSender in the HttpBpelService Binding dialog box and drag the cursor to the FileClientIN External Application in the Connectivity Map A link is ...

Page 78: ...the new Environment to envHTTPClient_BPEL 4 Right click envHTTPClient_BPEL and select New File External System Name the External System esFile and click OK esFile is added to the Environment Editor 5 Right click envHTTPClient_BPEL and select New HTTP External System Name the External System esHTTP and click OK esHTTP is added to the Environment Editor 6 Right click envHTTPClient_BPEL and select Ne...

Page 79: ...tbound FileClientOUT eWay properties for your system including the settings in Table 13 Table 13 cmHTTPClient Outbound File eWay Settings 4 From the Environment Explorer tree right click the File eWay External System esFile in this sample and select Properties from the shortcut menu The Properties Editor appears 5 Modify the File eWay Environment properties for your system including the settings i...

Page 80: ...ty field under Sun SeeBeyond Integration Server Configuration An ellipsis appears in the property field 3 Click the ellipsis The Password Settings dialog box appears 4 Enter STC as the Specific Value and as the Confirm Password and click OK 5 Click OK to accept the new property and close the Properties Editor For more information on deploying a Project see the Sun SeeBeyond Java Composite Applicat...

Page 81: ...Figure 35 Figure 35 dpHTTPClient_BPEL Deployment Profile Automapping 4 Save your current changes to the Repository 6 5 9 Creating and Starting the Domain To deploy your Project you must first create a domain After the domain is created the Project is built and then deployed Create and Start the Domain 1 Navigate to your JavaCAPS51 logicalhost directory where JavaCAPS51 is the location of your Java...

Page 82: ...ld icon for each of your Deployment Profiles 2 If there are any validation errors a Validation Errors pane will appear at the bottom of the Deployment Editor and displays information regarding the errors Make any necessary corrections and click Build again 3 After the Build has succeeded you are ready to deploy your Project Deploy the Project 1 From the Deployment Editor toolbar click the Deploy i...

Page 83: ...ent on page 92 Configuring the eWays on page 92 Creating and Activating the Deployment Profile on page 93 Creating and Starting the Domain on page 93 Building and Deploying the Project on page 93 Running the Sample on page 93 6 6 1 Project Overview Before you can run the Project you must first copy the following html input form file into any directory postBPELHTTPS The content of postBPELHTTPS htm...

Page 84: ...ously In the code where it shows FORM ACTION http localhost 18001 Deployment1_servlet_HttpServerSample HttpServerSample METHOD POST You must make changes based on your own Environment The logic for the ACTION parameter is http IS Server Name IS port Deployment_name _servlet_ servlet_url from properties servlet_url from properties Project Forms Figure 36 shows the original form Figure 36 Server Sam...

Page 85: ...EL Sample Projects Building and Deploying the prjHTTPServer_BPEL Sample Project HTTPS eWay Adapter User s Guide 85 Sun Microsystems Inc Figure 37 Server Sample Project Input Form Figure 38 shows the output form Figure 38 Server Sample Project Output Form ...

Page 86: ...roject Explorer tree 3 Right click Project1 and select Rename form the shortcut menu Rename the Project for this sample prjHTTPServer_BPEL 6 6 3 Creating the OTD The next step is to create a Data Type Definition DTD OTD as an input file for this HTTPS sample Project Follow the steps outlined in Creating the OTD on page 61 to convert the HTTPS_ParamList dtd file into an eGate OTD Name the new OTD H...

Page 87: ...Explorer pane drag the HTTPS_ParamList_ParameterInfo OTD s marshal operation onto the canvas between the two HTTPServer icons 6 By dragging from one icon to another link the icons on the canvas as shown in Figure 40 Figure 40 Business Process Icons With Links Server 7 You must add two Link Business Rules represented by a small blue star shaped icons to the appropriate links as shown in Figure 41 T...

Page 88: ...must create the settings you want in the Business Rule Designer 8 Select the first left Business Rule for the receive operation then click the Map Business Process Attributes icon in the toolbar The Business Rule Designer pane appears at the bottom of the window Use the Business Rule Designer to create your Business Rules 9 From the Output pane drag the name value pair nodes under WebParameterList...

Page 89: ...and Deploying the prjHTTPServer_BPEL Sample Project HTTPS eWay Adapter User s Guide 89 Sun Microsystems Inc Figure 42 Business Rule Designer Server Receive Business Rule 10 From the Output pane drag the contents node to the text node under headerInfo n the Input pane See Figure 43 ...

Page 90: ...one or more of the eGate Services on your Connectivity Map 6 6 5 Creating a Connectivity Map A Connectivity Map provides a canvas for assembling and configuring a Project s components The prjHTTPServer_BPEL Project only uses one Connectivity Map Follow the steps outlined in Creating a Connectivity Map on page 75 to create a Connectivity Map Name the Connectivity Map cmHTTPServer Selecting External...

Page 91: ...e Defining the Business Process Define your Business Process by combining the Business Process icon with the Service icon in the Connectivity Map To do so drag and drop the bpHTTPServer icon from the Project Explorer tree onto the Connectivity Map s bpHTTPServer1 Service icon If the operation is successfully defined the gears on the bpHTTPServer1 icon change from red to yellow Binding the eWay Com...

Page 92: ...ronment and rename it esHTTPServer 6 6 7 Configuring the eWays eWays facilitate communication and movement of data between the external applications and the eGate system Each Connectivity Map in the The prjHTTPServer_BPEL sample Project use two eWays that are represented as a nodes between the External Applications and the Business Process as seen in Figure 44 You must configure eWay properties in...

Page 93: ...g and Deploying the Project The Build process compiles and validates the Project s Java files and creates the Project EAR file Follow the steps outlined in Building and Deploying the Project on page 82 to build and deploy the prjHTTPServer_BPEL Project 6 6 11 Running the Sample The prjHTTPServer_BPEL Project includes the following sample files postBPELHTTPS html input file postHTTPS html sample ou...

Page 94: ...uide 94 Sun Microsystems Inc permission java util PropertyPermission read write 3 Configure the HTTPS eWay Connectivity Map and Environment Explorer properties for your particular Project Note You may need to create a new domain server after changing the Logical Host s server policy file or modify the security policy for the existing domain per step two above ...

Page 95: ...the eGate Integrator User s Guide What s in This Chapter About the HTTPS eWay JCD Sample Projects on page 95 Importing a Sample Project on page 96 Building and Deploying the prjHTTPClient_JCD Sample Project on page 96 Building and Deploying the prjHTTPServer_JCD Sample Project on page 104 7 1 About the HTTPS eWay JCD Sample Projects The HTTPS eWay HTTPS_eWay_Sample zip file contains two sample Pro...

Page 96: ... sample Project is succesfully imported you can import additional samples or click Close to exit the Import Manager 5 Before an imported sample Project can be run you must do the following Create an Environment see Creating an Environment on page 103 Configure the eWays for your specific system see Configuring the eWays on page 103 Create a Deployment Profile see Creating and Activating the Deploy...

Page 97: ... outbound File eWay to show the returned data and to confirm that the Project is operating correctly The Project has the following outputs GET Operations Returns the retrieved data in an html file POST Operations Posts a name value pair to a form and writes the same information to an html file to confirm the posting Figure 46 shows the flow of the sample HTTPS eWay Project Figure 46 HTTPS eWay Sam...

Page 98: ...n with this system FileClientOut The external file system that receives the information via HTTP another File eWay writes the received information to a text file on this system Input and Output Data The HTTPS eWay Project uses the following data files Get_Sample xml Post_Sample xml Sample_In dtd These files have the following content GET Command Get_Sample xml The input data file for the GET comma...

Page 99: ...The first step is to create a new Project in the Enterprise Designer 1 Start the Enterprise Designer 2 From the Project Explorer tree right click the Repository and select New Project A new Project Project1 appears on the Project Explorer tree 3 Right click Project1 and select Rename form the shortcut menu Rename the Project for this sample prjHTTPClient_JCD 7 3 3 Creating the OTD The next step is...

Page 100: ... s Guide 100 Sun Microsystems Inc OTD onto the nodes of a destination HTTPS OTD and other OTDs HTTPS OTD nodes represent HTTPS functions which are in turn able to call HTTPS eWay methods The Business Rules for the jcdHTTPClient Java Collaboration Definition are displayed in Figure 47 and Figure 48 Figure 47 jcdHTTPClient Collaboration Definition Part 1 ...

Page 101: ...e a Connectivity Map Name the Connectivity Map cmHTTPClient Selecting External Applications Follow the steps outlined in Selecting External Applications on page 76 to select the external applications for the prjHTTPClient_JCD Project s Connectivity Map Populating the Connectivity Map Add the Project components to the prjHTTPClient_JCD Connectivity Map by dragging the icons from the toolbar to the ...

Page 102: ...t icon from the Project Explorer tree onto the Connectivity Map s jcdHTTPClient1 Service icon If the operation is successfully defined the gears on the jcdHTTPClient1 icon change from red to green Binding the eWay Components The final step in creating a Connectivity Map is binding the eWay components together Steps required to bind eWay components together 1 Open the cmHTTPClient Connectivity Map ...

Page 103: ... s Environment Editor Follow the steps outlined in Creating an Environment on page 78 to create an Environment for the prjHTTPClient_JCD Project 7 3 7 Configuring the eWays eWays facilitate communication and movement of data between the external applications and the eGate system Each Connectivity Map in the prjHTTPClient_JCD sample Project use two eWays that are represented as a nodes between the ...

Page 104: ... for the prjHTTPClient_JCD Project 7 3 10 Building and Deploying the Project The Build process compiles and validates the Project s Java files and creates the Project EAR file Follow the steps outlined in Building and Deploying the Project on page 82 to build and deploy the prjHTTPClient_JCD Project 7 3 11 Running the Sample The prjHTTPClient_JCD Project includes the following sample files Get_Inp...

Page 105: ...JCEHTTPS The content of postJCEHTTPS html is HTML HEAD TITLE HTTPS Test Page TITLE HEAD BODY FORM ACTION http localhost 18001 Deployment1_servlet_HttpServerSample HttpServerSample METHOD POST TABLE TR TD First Name TD TD INPUT NAME fname TD TR TR TD Last Name TD TD INPUT NAME lname TD TR TR TD EMail TD TD INPUT NAME email TD TR TR TD Sex TD TD INPUT type radio name sex value Male Male TD TR TR TD ...

Page 106: ...ng and Deploying the prjHTTPServer_JCD Sample Project HTTPS eWay Adapter User s Guide 106 Sun Microsystems Inc Project Forms Figure 51 shows the original form Figure 51 Server Sample Project Original Form Figure 52 shows the input form Figure 52 Server Sample Project Input Form ...

Page 107: ... OTD Project Operations The prjHTTPServer_JCD Project operates as follows HTTPServer1 The HTTP server external application or system the HTTPS eWay handles inbound communication with this system jcdHttpServer1 Receives instructions from the HTTP server external application via the HTTPS eWay 7 4 2 Creating a Project The first step is to create a new Project in the Enterprise Designer 1 Start the E...

Page 108: ...ion before implementing the Collaboration The Collaboration Editor user interface allows you to create the Business Rules that implement your business logic for a Java based Collaboration You can create the desired Business Rules for your Project by dragging and dropping values from a source OTD onto the nodes of a destination HTTPS OTD and other OTDs HTTPS OTD nodes represent HTTPS functions whic...

Page 109: ... jcdHttpServer1 2 Rename the HTTPS external application HTTPServer1 Be sure to save the new Connectivity Map before you proceed You can click Save for this purpose Defining the Business Process Define your Business Process by combining the Business Process icon with the Service icon in the Connectivity Map To do so drag and drop the jcdHttpServer icon from the Project Explorer tree onto the Connec...

Page 110: ...is Project add the HTTP Server external system to the Project s Environment and rename it esHTTPServer 7 4 7 Configuring the eWays eWays facilitate communication and movement of data between the external applications and the eGate system Each Connectivity Map in the The prjHTTPServer_JCD sample Project use two eWays that are represented as a nodes between the External Applications and the Business...

Page 111: ...ps outlined in Creating and Starting the Domain on page 81 to create and deploy a domain for the prjHTTPServer_JCD Project 7 4 10 Building and Deploying the Project The Build process compiles and validates the Project s Java files and creates the Project EAR file Follow the steps outlined in Building and Deploying the Project on page 82 to build and deploy the prjHTTPServer_JCD Project 7 4 11 Runn...

Page 112: ...eWay permission java security SecurityPermission insertProvider SunJSSE permission java util PropertyPermission read write 3 Configure the HTTPS eWay Connectivity Map and Environment Explorer properties for your particular Project Note You may need to create a new domain server after changing the Logical Host s server policy file or modify the security policy for the existing domain per step two a...

Page 113: ...rties Inbound HTTPS eWay Properties 47 48 53 Outbound HTTPS eWay Properties 49 eWay with Java Collaborations overview 99 108 G GET method 9 H Handshaking SSL 33 HTTP OTD method descriptions 23 Server 23 HTTPS OTD Client 22 node description 23 overview 22 I Inbound HTTPS eWay Properties 47 48 53 Installing alert codes 20 eWay plug ins 19 migration procedures 18 sample Projects and Javadocs 17 J Jav...

Page 114: ...e operation 56 Setting acceptor threads property 54 Setting eWay properties Proxy Configuration 48 Setting Properties configuring HTTPS eWay 41 connection retry settings 50 eWay Connectivity Map 41 44 eWay environment properties 43 outbound eWay 45 SSL Handshaking 33 Supporting documents 14 T text conventions 13 TrustStore 29 generating 29 32 ...

Reviews:

No comments

Brands by name

Popular brands

Load more brands