Scribd
Upload
10 views

SecuritySessionNotes TXT (Notes)

Uploaded by

saikrishnatadiboyina
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
10 views

SecuritySessionNotes TXT (Notes)

Uploaded by

saikrishnatadiboyina
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 3

----Day11----

Security

Authentication--->
USER_ID & PW ---> <ICARD> -> NAME, DEPT, EMPID, BLOOD_GROUP

BASIC -> USER_ID & PW (CLIENT ID & SECRET)


->HEADER -> BASE64 FORMAT
http - 401 <USER_ID & CRED> ARE WRONG

AUTHORIZATION--->
-> 403 --->
-> OAUTH2.0 -->

-> AUTHRIZATION SERVER ----> TOKEN -> VALIDITY ->


-> RESOURCE SERVER --------> RESOURCES -> PROD_ID ----> DETAILS ABOUT PROD

ENCODING & DECODING ->

CERTIFICATE BASE AUTHENTICATION---->


HANDSHAKING

CI REQUEST -> HTTPS


ERROR - HANDSHAKING ---> CERTIFICATE OF HTTPS IS EXPECTED
-> USER-D & PW (CLINENTID &SECRET)

https://web.postman.co/workspace/My-Workspace~25495fe6-284d-407e-8176-
a52e9aaa37a8/request/17770347-639c92b8-0655-4bab-818a-6505f5c369e4

---> DEMO OUTH2.0 <CI SERVICE>


---> SF OUTH2.0 ----> I WANT TO ACCESS SF ---> OAUTH 2.0 --->
CONFIGURATION FOR SF OAUTH2.0
-> SF / AUTH2.0 --->
-> CI --->
-> SF ---> PASS
CREDENTAILS....

-> BASIC -> AUG2023

-> AUTHRIZATION SERVER ----> TOKEN -> VALIDITY ->


-> RESOURCE SERVER --------> RESOURCES -> PROD_ID ----> DETAILS ABOUT PROD

------------------------------------
{
"oauth": {
"clientid": "sb-0895-d23c-470a-9e0c-05b93d6c9e48!b1",
"clientsecret": "3be-db35-41fe-a770-c41538b31cd1$j0DO5e_u0gCiY",
"url": "https://080f7ecetrial.it-cpitrial05.cfapps.us10-
001.hana.ondemand.com",
"createdate": "2022-11-03T01:58:06.517Z",
"tokenurl":
"https://080f7ecetrial.authentication.us10.hana.ondemand.com/oauth/token"
}
}
AUTH SERVER - https://080f7ecetrial.authentication.us10.hana.ondemand.com/oauth/
token

step1- https://080f7ecetrial.authentication.us10.hana.ondemand.com/oauth/token?
grant_type=client_credentials

step2 - https://080f7ecetrial.it-cpitrial05-rt.cfapps.us10-001.hana.ondemand.com/
http/Demo_Batch29
-> Auth -> no auth
-> pass barer token -> above step1

-------------------------------------------------------------
ENVIRONMENTS -> CF / NEO <> --->

2012 ---> PI/PO -> SALESFORCE (WEBSERVICE)--> TOKEN (ZTABLE) ->>> INVLAID TOKEN ---
> FETCH NEW ---> OVER ZTABLE

sftp/httpS--->

TRANSPORT LEVEL ----HTTPS/SFTP <SSL>


MESSAGE LEVEL ---- DIG SEG, PGP

PGP --->
PUBLIC -> ENCRYPTING
PRIVATE -> DECRYTING

---ENCRYPTIO SCNARIO---
SOURCE <SF,FG,JAVA APP, DB....>
<CI> DECRYPTING/ENCRYPTING ----> MESSAGE
---> PAYROLL----> PUBLIC KEY <ENCRYPT FILE> -> SFTP<ADP>
-> ADP WILL PROVIDE ME THE PUBLIC

TAREGT <ADP, 3RD PARTY>


----> PRIVATE KEY <DECRYPT> FILE (PAYROLL)

---DECRYPTION SCENARIO---
SOURCE <SFTP> ---> PGP ENCRYPTED (CONTAINS NEW EMP)
<CI> ----> PGP ENCRYPTED -> PGP DECRYP <PRIVATE KEY) --> MESSAGE ---->
FINAL TRANFORMATION
UPDATE NEW EMP IN DB/SF
TAREGT <SF>
----> NEW EMPL WILL BE CREATED

-------CI-------
-> KLEOPATRA ----> MANAGE KEYS
---CI --> KEY1 (PUBKEY)
--> KEY2 (pubkey)
IMPORT--->
PUBLIC KEY --> NO PASPHRASE
PRIVATE KEY -> PASSPHRASE

KEY PAIR (PRIVATE + PUBLIC KEY) ---> PASSPHASE IS MAINTED (PASSWORD)

-----BEGIN PGP MESSAGE-----
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=ESEU
-----END PGP MESSAGE-----

You might also like