PingAuthorize

Creating a shared secret

Define the authentication credentials that the JSON PDP API might require a client to present.

Steps

  1. To create a shared secret, run the following example dsconfig command, substituting values of your choosing.

    Example:

    {pingauthorize}/bin/dsconfig create-authorization-policy-decision-shared-secret \
      --secret-name "Shared Secret A" \
      --set "shared-secret:secret123"
    • The shared-secret property sets the value that the JSON PDP API requires the client to present. After you set this value, it is no longer visible.

    • The secret-name property is a label that allows an administrator to distinguish one JSON PDP API Shared Secret from another.

  2. To update the shared-secrets property, run the following example dsconfig command.

    Example:

    {pingauthorize}/bin/dsconfig set-http-servlet-extension-prop \
      --extension-name "JSON PDP API" \
      --add "shared-secrets:Shared Secret A"

    A new JSON PDP API Shared Secret is not used until the shared-secrets property of the JSON PDP API HTTP Servlet Extension is updated.