DEVHIDE
Login Or Sign up

How do backend applications authenticate webseal headers?

596 Views Asked by At

I am new to IBM ISAM and webseal.

How do backend web applications verify that the IV headers (e.g. iv-user) is created by webseal and not some malicious third party?

webseal
Original Q&A
1

There are 1 best solutions below

2
On BEST ANSWER

It doesn't :)

Generally a sort of IP filter or similar is the best to use here, so the application can ensure that the request originates from a known webseal server.

An alternative to iv-* headers is to create some sort of signed token such as a JWT token that can be verified by the application.

Related Questions in WEBSEAL

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.