Creating a shared secret

Define the authentication credentials that the JSON PDP API might require a client to present.

Steps

To create a shared secret, run the following example dsconfig command, substituting values of your choosing.

Example:

{pingauthorize}/bin/dsconfig create-authorization-policy-decision-shared-secret \
  --secret-name "Shared Secret A" \
  --set "shared-secret:secret123"

The shared-secret property sets the value that the JSON PDP API requires the client to present. After you set this value, it is no longer visible.
The secret-name property is a label that allows an administrator to distinguish one JSON PDP API Shared Secret from another.

To update the shared-secrets property, run the following example dsconfig command.

Example:
{pingauthorize}/bin/dsconfig set-http-servlet-extension-prop \ --extension-name "JSON PDP API" \ --add "shared-secrets:Shared Secret A"
A new JSON PDP API Shared Secret is not used until the shared-secrets property of the JSON PDP API HTTP Servlet Extension is updated.