Creating a shared secret
Define the authentication credentials that the JSON PDP API might require a client to present.
Steps
-
To create a shared secret, run the following example
dsconfig
command, substituting values of your choosing.Example:
{pingauthorize}/bin/dsconfig create-authorization-policy-decision-shared-secret \ --secret-name "Shared Secret A" \ --set "shared-secret:secret123"
-
The
shared-secret
property sets the value that the JSON PDP API requires the client to present. After you set this value, it is no longer visible. -
The
secret-name
property is a label that allows an administrator to distinguish one JSON PDP API Shared Secret from another.
-
-
To update the
shared-secrets
property, run the following exampledsconfig
command.Example:
{pingauthorize}/bin/dsconfig set-http-servlet-extension-prop \ --extension-name "JSON PDP API" \ --add "shared-secrets:Shared Secret A"
A new JSON PDP API Shared Secret is not used until the
shared-secrets
property of the JSON PDP API HTTP Servlet Extension is updated.