Portlet Factory, Version 6.1.2


 

WebSphere Portal Credential builder

Use the WebSphere Portal Credential builder to access credentials (for example, user names and passwords) stored in the IBM® WebSphere® Portal server credential vault. Use this builder when you want to implement a single sign-on mechanism by storing user credentials in the WebSphere Portal credential vault.

This WebSphere Portal Credential Vault mechanism is useful for portlets that require credentials different than the credentials used by the WebSphere Portal server. This might occur when a portlet needs to submit unique credentials to a backend system, for example, a database or a Lotus Notes server.

The WebSphere Portal Credential builder encapsulates the functionality of the Credential Vault portlet for accessing user credentials from within a portlet model. This builder adds a linked Java object and related method to the model. The LJO class is an implementation of an interface.

 

Credential vault basics

A Credential Vault is a storage space for credentials. Credentials can include certificates, user names and passwords, private keys, and similar security-related data. A Vault is partitioned into segments. A segment can be managed by a user or by an administrator. Administrators perform management through the Credential Vault portlet.

Within a segment are vault slots. A slot is used to store the credentials associated with a particular portlet. When credentials are required, a portlet can access the credentials directly from the slot.

A Credential Vault can support two types of credentials:

Passive

Allows a portlet to extract the User ID and Password

Active

Allows you to submit credentials to backend applications using standard authentications, for example, HTTP form-based authentication or basic authentication.

Note: This builder provides support for Passive Credentials only.

 

Types of vault slots

There are four types of vault slots. Each type defines how the vault slot is to be used within a portlet. The slot types are:

Portlet private

Stores user credentials that are not shared among portlets.

Shared

Stores user credentials that are shared among the user's portlets.

Administrative

Allows each user to store a User ID/Password for an administrator-defined resource (for example, Domino Server)

System

Stores system credentials where the actual user ID/Password can be shared among all users and portlets.

Each vault slot is given a resource name and slot ID when it is created. When setting and retrieving the slots credential information (user identification and password), you access the slot by specifying the resource name builder input. The resource name is used to lookup the slot information from the Credential Vault.

Parent topic: Builder help


Library | Support |