When a create request is submitted in IDM via APIgateway (or any webservice client ) by exposing create task as TEWS. The requirement is to pass the user password as response back to APIgateway (webservice client ).
Please suggest the possible ways.
This seems to be related to L1 cases 01184269 and 01166744.
I was able to confirm with our subject matter experts in support that password data could not be sent through TEWS. I suggested an IDEA on this forum (Click IDEA to open a new IDEA for review).
Perhaps our greater user community can offer suggestions as well on your specific use case. Thank you.
The only other option for not passing the username/password in the SOAP envelope for TEWS is to protect it using CA SSO.
Using this method, you can have the TEWS URL protected by an authentication scheme like SSO basic auth and then have the API Gateway per-authenticate to the TEWS URL. when doing that, you will not need to use the context section in the envelope but you will need to use the following cookie variable:
I hope I understood you question right
Itamar Budin Sr Product Manager - IMAG Lifecycle
Check out where we’re going, attend a CA Product Roadmap session: www.ca.com/roadmaps