Securing the Web Application Layer
The following procedure describes the steps you must execute to secure the web application layer by using the web security filter. This function is available only for Application Platform web projects.
To secure the web application layer of your Application Platform web project
1. In Designer, go to the Project Explorer or Package Explorer and right-click your project.
2. Double-click the web.xml file, located here: project_name/WebContent/WEB-INF/web.xml.
3. Edit the web.xml file by adding the following entry: com.softwareag.applatform.pls.security.filter.AppPlatformSecurityFilter Configure the filter by specifying one or more of its parameters.
For information about the security filter and its parameters, see Getting Started with the Application Platform API.
4. Optional. If the project does not have a Bnd template:
a. Go to the Project Explorer or Package Explorer and select App Platform.
b. Click Create Bnd template.
5. Optional. If your project is deployed to Integration Server, edit the Require-Bundle key from the bnd.bnd file by adding the following entry:
com.softwareag.applatform.pls.security, com.softwareag.applatform.
pls.security.is
The com.softwareag.applatform.pls.security entry is a security bundle, which ensures that the SSO support can be enabled for this POJO service and resolves the AppPlatformSecurityFilter class.
Note: | If your project is deployed to My webMethods Server, My webMethods automatically resolves the AppPlatformSecurityFilter class when the associated Composite Application Framework (CAF) project is deployed to the server. |
6. Optional. If you are configuring an Application Platform project created in version 9.9 or earlier, redeploy your project to a runtime, configured in a later release of Application Platform than version 9.9.