TEC Workbook - IBM

More documents

Recommendations

Info

<strong>IBM</strong> Software The productTransform.xsl template looks for two different patterns: ● When a tag is encountered, it will change it into a tag and then decode the original tag’s value. dp:decode() is an extension function that will perform the base-64 decoding. ● When a tag is encountered, it will use the str:tokenize() function to tokenize the list of benefits (delimited by semicolons) into a small XML tree. ● An identity transform is found at the end of the template, which will match anything else that hasn’t explicitly been matched, and copy it to the output document. Partial Listing of file: productTransform.xsl __9. In the soapUI request window, load the request from c:\labs\requests\soapMsg.xml. __10. Click the green submit button to POST the message to ProductServiceProxy, then inspect the response. Notice that the tag was replaced with a tag, and that its contents are no longer base-64 encoded. Also, the benefits list was properly expanded into a multi-element group. __11. If you’ve gotten everything working properly, you can save your configuration by clicking the Save Config link in the top of the browser window. Page 48 WebSphere Lab Jam
2.7 Stylesheet Caching <strong>IBM</strong> Software XSL stylesheets are compiled and then cached to improve performance. Previously you configured your processing rule to transform the request XML document against productTransform.xsl. The stylesheet was fetched from a remote server, compiled, and then cached. You can verify this by checking the status of the document cache. __1. In the left hand navigation pane, under the Status menu, scroll down to find the XML Processing section, and click on Stylesheet Cache. In the cached stylesheets column, you can see the number of stylesheets that have been compiled and cached (this value also includes some system stylesheets). __2. In the XML Processing section, click on Stylesheet Status The Stylesheet Status page shows you all of the stylesheets that have been compiled and cached. Since schema documents (XSD) are compiled like stylesheets, they show up in this list too. 2.8 Implicit XML Threat Protection Services that are configured to receive XML messages provide a wide array of additional XML threat protection. 2.8.1 Malformed XML Content Detection In this next step, you’ll post malformed XML to your service __1. In soapUI, click on the Request tab. __2. Load the request body with file c:\labs\requests\malformed.xml. Notice that the closing tag is missing the leading slash resulting in the XML to be malformed. Don’t correct the error. __3. Click the green submit button to POST the malformed message to ProductServiceProxy. Again, you should receive a generic SOAP fault. Click the View Log link at the top of the Multi-Protocol Gateway configuration page and notice the error message pertaining to the mismatched tag. 2.8.2 XML Denial of Service (XDoS) WebSphere DataPower appliances can protect Web services against both single message denial of service (XDoS) and multiple message denial of service (MMXDoS) attacks. Single message XDoS attacks may have any combination of the following characteristics: ● Jumbo payloads – Sending a very large XML message to exhaust memory and CPU on the target system. ● Recursive elements – XML messages that can be used to force recursive entity expansion (or other repeated processing) to exhaust server resources Lab 2 - Working with XML Page 49
Page 1 and 2: WebSphere Lab Jam Connectivity WebS
Page 3 and 4: Contents IBM Software CONNECTION PA
Page 5 and 6: Connection Parameters Spreadsheet I
Page 7 and 8: 1.4 Introduction to WebSphere DataP
Page 9 and 10: IBM Software You’re now ready to
Page 11 and 12: There are several areas in the WebG
Page 13 and 14: 1.10 WebSphere DataPower Services I
Page 15 and 16: IBM Software Gateway supports WebSp
Page 17 and 18: cert: Directory Usage IBM Software
Page 19 and 20: __7. Click on the small plus sign t
Page 21 and 22: 1.13 Logging IBM Software WebSphere
Page 23 and 24: ● Trigger a set of actions to occ
Page 25 and 26: 1.13.4 Appliance management IBM Sof
Page 27 and 28: 1.13.8 Configuration Comparison, Ch
Page 29 and 30: Lab 2 Working with XML Prerequisite
Page 31 and 32: 2.1.5 WebSphere DataPower Configura
Page 33 and 34: IBM Software It’s also possible t
Page 35 and 36: Match Rule - evaluate statements us
Page 37 and 38: IBM Software __18. In the Configure
Page 39 and 40: IBM Software __2. Expand the policy
Page 41 and 42: IBM Software __12. In soapUI, click
Page 43 and 44: IBM Software __3. Click the green s
Page 45 and 46: The SQL statement would become: SEL
Page 47: __2. Click and drag a transform act
Page 51 and 52: 2.8.3 Virus Scanning IBM Software V
Page 53 and 54: Lab 3 Securing XML Message Content
Page 55 and 56: 3.2.2 Create the Crypto Key and Cer
Page 57 and 58: 3.2.7 Verifying the request signatu
Page 59 and 60: __8. Click the Close Window link to
Page 61 and 62: __12. Click on the small [+] to sho
Page 63 and 64: IBM Software __3. Click on the last
Page 65 and 66: IBM Software __6. In the list of co
Page 67 and 68: __11. Click the Done button in the
Page 69 and 70: Lab 4 Access Control Framework Prer
Page 71 and 72: __3. Double click the yellow outlin
Page 73 and 74: Appendix A. Notices This informatio
Page 75 and 76: Appendix B. Trademarks and copyrigh
Page 77 and 78: NOTES

TEC Workbook - IBM

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?