Creating the main message flow

The Security Identity Propagation sample main message flow is supplied, but if you prefer to create the message flow yourself, use the following instructions:

  1. Create a new message flow called SecurityIdentitySampleFlow in the message flow project called SecurityIdentitySampleFlowProject. For instructions, see Creating a message flow in the WebSphere Message Broker documentation.
  2. In the Message Flow editor, add and rename the nodes listed in the following table. For instructions, see Adding a node in the WebSphere Message Broker documentation.
    Palette drawers Node type Node name
    WebSphere MQ MQInput MQ_ID
    WebSphere MQ MQOutput MQ_ID Output
    WebSphere MQ MQInput MSG_ID
    WebSphere MQ MQOutput MSG_ID Output
    HTTP HTTPInput HTTP_ID
    HTTP HTTPReply HTTP_ID Output
  3. Add the subflow to the main message flow:
    1. Ensure that SecurityIdentitySampleFlow.msgflow is displayed in the Message Flow editor.
    2. Right-click the Message Flow editor, and click Add Subflow.
    3. In the Add Subflow window, expand the SecurityIdentitySampleFlowProject project and select SecurityIdentitySubFlow.msgflow.
    4. Click OK. A node called SecurityIdentitySubFlow, representing the subflow, is added to the Message Flow editor.
    5. Rename this subflow node SecurityIdentitySubFlow1.
  4. Repeat step 4 twice to add two more copies of the subflow to the canvas.
  5. Connect the nodes together so that the output of each Input node is connected through the subflow to the corresponding output node. For instructions, see Connecting nodes in the WebSphere Message Broker documentation.
    To check that you have connected the nodes together correctly, see the diagram in About the Security Propagation sample.
  6. Configure the node properties listed in the following table. Accept the default values for all properties unless an alternative value is listed in the table. For instructions, see Configuring a message flow node in the WebSphere Message Broker documentation.
    Node name Page Property Value
    MQ_ID Basic Queue name SECURITYIDFROMMQIN
    Input Message Parsing Message domain XMLNSC
    MSG_ID Basic Queue name SECURITYIDFROMMSGIN
    Input Message Parsing Message domain XMLNSC
    Security Identity Token type Username + password
    Identity Token location $Body/Envelope/Body/MessageIdentity/Username
    Identity Password location InputRoot.XMLNSC.Envelope.Body.MessageIdentity.Password
    Identity Issued by location $Body/Envelope/Body/MessageIdentity/IssuedBy
    HTTP_ID Basic Path suffix /Security/IdentityFromHttp
    Input Message Parsing Message domain XMLNSC
  7. Save the message flow.

Back to Building the Security Identity Propagation sample

Back to sample home