Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved


Chapter 5 Administering ActiveSpaces Security : Creating a Security Token

Creating a Security Token
Complete this task if you want to create a token. A token is an optional configuration file that can be deployed on nodes that have access to or create secured ActiveSpaces resources. The token is created from the security parameter values set in a specified policy file.
If not used, the keyword “none” is provided for the token file location. In such a case, requestors will trust any controller and these requestors cannot connect to a secured metaspace where transport level authentication is required.
When you create a token, you can specify that it is encrypted: in this case, a requestor can only be started if the password is typed when the node starts.
1.
2.
The create security token command has the following syntax:
(define | create) security_token domain_name <string>
policy_file <string> [create_identity [common_name <string>]
[encrypt <boolean>][validity_days <integer>]]token_file <string>
For a complete description of the create security_token command, see define | create security_token.
For example:
as-admin> create security_token
domain_name "mydomain"
policy_file "mypolicy.txt"
token_file "mytoken.txt"
3.
4.
Perform Additional Programming Tasks to Process Authentication Requests
To process authentication requests, once you have set up authentication using the ActiveSpaces CLI, you can code a callback routine for client authentication on requestors and develop code to process authentication requests.
Implementing the API's authentication callback is optional. If authentication is required on a metaspace, a default authenticator is always provided, which prompts the user for the username/account-password or keyfile/keyfile-password. If more sophisticated credential feeding implementations are required, the callbacks can be implemented to customize this behavior.
The ActiveSpaces API provides a sample Java program, ASUserAutenticator.java, that demonstrates the use of a callback routine to process user authentication information.
For a general description of user authentication, see User Authentication in Chapter 4 in the TIBCO ActiveSpaces Developer’s Guide, Implementing ActiveSpaces Security.”
For a description the ASUserAuthenticator sample program, see ASUserAuthenticator in Chapter 5 of the TIBCO ActiveSpaces Developer’s Guide, Using the Example Code.

Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved