1.  Home
  2. MIDRANGE-L
  3. June 2025

Re: OAuth2 authentication with hosted web service

Good answer Nadir but I'm concerned about the shops that know nothing Java. Why can IBM not supply that Java "stub" and give instructions on how to deploy it?

I look forward to seeing your article and hope that some day soon we will get an update on the manual. It is difficult for newbies to get going because so much of the current product detsil is in articles (which are great) but not in the manual.


Jon Paris

On Jun 10, 2025, at 11:06 PM, Nadir K Aimra <amra@xxxxxxxxxx> wrote:

Well, the java code can call the ILE program, no? Fairly simple given Java Toolbox. Given that Liberty is a Java stack, they only deal with Java.

However, there is nothing that precludes users from create an ILE-based web service, say to produce a JWT token, and the web service that is called could get the HTTP header value of JWT token and call an ILE program to verify it. There are a lot of ways of doing this. I am working on an article that shows an ILE web service that generates JWT tokens after getting authenticated by Basic Auth, then other web services can verify the generated token by calling program. Stay tuned.

-----------------------------------------------
Nadir Amra
e-mail: amra@xxxxxxxxxx


From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> on behalf of Jon Paris <jon.paris@xxxxxxxxxxxxxx>
Date: Tuesday, June 10, 2025 at 4:06 PM
To: Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: [EXTERNAL] Re: OAuth2 authentication with hosted web service
It's a great pity that it has to be in Java. Since IWS' role in life is to surface RPG code with Java hidden in the background, it makes no sense to me to have to write this exit code in Java. Why not allow RPG code to be called?


Jon Paris
Jon.Paris@xxxxxxxxxxxxxx



On Jun 10, 2025, at 8:29 PM, Nadir K Amra <amra@xxxxxxxxxx> wrote:

In the IWS server, you have the option to insert a trust authentication interceptor (TAI). It a piece of user-defined Java code that gets called for protected web services. In this code you have access to the HTTP request data, and you can do anything you want.

See https://www.ibm.com/support/pages/node/6396908

-----------------------------------------------
Nadir Amra
e-mail: amra@xxxxxxxxxx


From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> on behalf of Darren Strong <darren@xxxxxxxxx>
Date: Tuesday, June 10, 2025 at 2:09 PM
To: midrange-l General Questions (midrange-l@xxxxxxxxxxxxxxxxxx) <midrange-l@xxxxxxxxxxxxxxxxxx>
Subject: [EXTERNAL] OAuth2 authentication with hosted web service
We've been asked to setup a webservice for a vendor to call and get some data from our IBM I server. Setting up the webservice to do this was fairly straightforward, but we'd like to use more than the "Basic" authentication available (username/password) with the integrated web server wizard (IWS). Do you have any experience or links explaining if and how IBM i can support this?


--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l .

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related questions.


--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l .

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related questions.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related questions.



As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.