For up-to-date product documentation, see the IBM MobileFirst Foundation Developer Center.
Configure FIPS 140-2 for existing applications
You must modify applications that were created in earlier versions of IBM MobileFirst™ Platform Foundation to enable the FIPS 140-2 feature.
Before you begin
The FIPS 140-2 optional feature is not enabled by default on apps created for any versions of the Android operating system and on iOS apps in versions of IBM MobileFirst Platform Foundation before version 8.0. To enable the FIPS 140-2 optional feature for the Android operating system, see Enabling FIPS 140-2. After the optional feature is enabled, we can configure FIPS 140-2.
After you completed the steps that are described in Enabling FIPS 140-2, we must configure FIPS 140-2 by modifying the initOptions.js file to add the FIPS configuration property.
Note: For JSONStore FIPS 140-2 users The FIPS 140-2 feature, combined with the JSONStore feature, enables FIPS 140-2 support for JSONStore. This combination supersedes what was indicated in tutorial JSONStore - Encrypting sensitive data with FIPS 140-2 that was available for IBM® Worklight® V6.0 or earlier. If you previously modified an application by following the instructions in this tutorial, delete and re-create its iPhone, iPad, and Android environments. Because any environment-specific changes that you previously made are lost when you delete an environment, make sure to back up any such changes before you delete any environment. After the environment is re-created, we can reapply those changes to the new environment.
Procedure
- Add the following property to the initOptions object found in the index.js file.
enableFIPS : true
- Rebuild and deploy your app.
Parent topic: FIPS 140-2 support