Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Qlik Open Lakehouse is Now Generally Available! Discover the key highlights and partner resources here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Anonymous
Not applicable
‎2017-08-22 07:57 AM

Question - OAuth2.0 implementation in Talend ESB

Hi,

I have a requirement where I have a number of RestFul API's that need to be exposed using Talend ESB. The services have been created and I have deployed them on Karaf container, no problem there. But, I need a user based authentication layer like OAuth2 to authenticate those requests. The web app that calls the Rest services is on a remote server. So basically, I need an auth server that is validating all incoming requests before Talend gives back the protected resource.

 

Can anyone please tell me if this something that can be done within Talend or do I need a separate auth server which Talend would call when receiving a request?

Labels (4)
Labels
949 Views
0 Likes
11 Replies
nmodi
Creator
Creator
‎2018-04-09 12:55 PM

@tsteinborn Could you please help me out connect the dots here, we have 6.4.1 enterprise version.

 

I have create API endpoint using tRESTRequest & trying to use 'Use Authentication (ESB Runtime Only) Basic HTTP' option to enable authentication on my call, using this reference https://help.talend.com/reader/uwwCVAHxWDS6l5fZQ~lVYA/1CDi6NINp_q5p0PJbdgSnA 

 

0683p000009LtKO.png
I have IAM service installed as well & have users created on IAM service. now how do I use that to authenticate API calls?

1) Created users on IAM service that is apache syncope
2) Updated TAC configuration to use IAM
3)deployed my API endpoint in ESB runtime as service
4)Added this endpoint under ESB Infrastructure-->Authorization & assigned permission to corresponding IAM user

now when I tried to test this call by passing authorization parameter as base64, I still gets 401 Unauthorized.

170 Views
0 Likes
Anonymous
Not applicable
‎2018-11-13 04:18 AM
Author

Hi Nmodi,

 

You would have first to activate HTTP_BASIC in your tRESTRequest component (Provider service). Then, everything will be handled at the Talend Runtime level.

By Default, the Talend Runtime's Basic Authentication will be checked against a local file <RuntimeFolder>/etc/users.properties, the authentication ins Talend Runtime is done using JAAS, and the default JAAS Realm (against which the credentials are checked) is not Talend IDM, but Karaf Realm, meaning the users.properties.

 

In order to use TIDM, you need to switch the Runtime configuration, by opening a Karaf Console, and putting tesb:switch-sts-tidm, as explained in our documentation: https://help.talend.com/reader/N_IWLhlko~bkC9c3_frIgQ/k8Zevl8GSEyBrKg4FYTKog

 

The previous link will be very useful in understanding and setting up your Basic Authentication configuration.

 

I hope this helps!

 

170 Views
0 Likes