{"id":137,"date":"2007-04-15T16:03:00","date_gmt":"2007-04-15T20:03:00","guid":{"rendered":"http:\/\/onlineappsdba.com\/?p=137"},"modified":"2008-07-27T15:13:39","modified_gmt":"2008-07-27T19:13:39","slug":"access-manager-webgate-request-flow","status":"publish","type":"post","link":"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/","title":{"rendered":"Access Manager: WebGate Request Flow"},"content":{"rendered":"

For basics on Access Manager (earlier Oblix<\/span> COREid<\/span> and now Oracle Identity Management Component) follow previous links<\/p>\n

Access Manager Overview<\/a>
\n–Access Manager overview II<\/a>
\n–Installing Access Manager \/ COREid<\/span><\/a><\/p>\n

WebGate<\/span><\/strong> is webserver<\/span> plugin<\/span> which communicates between user and access server (another component of Access Manager). Webgate<\/span> is like communicator\/plug-in which accepts users request via Web Server (Apache, Oracle HTTP or IBM Web Server) and communicates with Access Server component of COREid<\/span>\/Access Manager.
\nIf request is protected by policy (already defined using Policy Manager), it sends user authentication challenge<\/span> based on authentication policy defined in access server for that resource. Once user is authenticated it then checks authorization policy for that resource and depending on authorization <\/span>policy access is granted or denied for that resource (URL) to user.<\/p>\n

Typical example for that is lets assume user request for resource http:\/\/teachmeoracle.com\/aboutme.html<\/a> where teachmeoracle<\/span>.com is webserver<\/span> listening on port 80 and resource \/aboutme<\/span>.html is protected by policy (already defined by access server console. Coming soon in near future<\/strong><\/em>). As per policy only “authenticated users” and whose IP<\/span> ddress<\/span> is 198.16.X.X are allowed to access this resource (aboutme<\/span>.html)<\/p>\n

Assumptions:<\/strong>
\nA) You already have installed , Identity Server, WebPass<\/span>, Access Server component on some servers.
\nB) You have configured\/installed Web Gate on webserver<\/span> hosting site teachmeoracle<\/span>.com
\nC) Resource \/aboutme<\/span>.html is protected by policy mentioned above.
\n
\nHere are steps which will happen
\n<\/strong>1. User types URL in his browser
\n2. Request hit to web server which is configured with webgate<\/span>\/accessgate<\/span> 3. WebGate<\/span> communicates with Access Server component of Access Manager\/COREid<\/span> to see if resource is protected.
\n4. Access Server replies to web gate with authentication and authorization policy for that resource.
\n5. Based on authentication scheme , web gate ask for corresponding authentication challenge (LDAP<\/span> username<\/span>\/password or any custom form authentication)
\n6. Web gate accept username<\/span>\/password from user and (If authentication is netpoint<\/span> over LDAP<\/span> server) passes on t Access Server which in turn checks username<\/span>\/passwords with Directory server (LDAP<\/span> Server) configured with this Access Server.
\n7. If authentication is successful go to next step, if authentication fails go to step 9
\n8. If authentication is successful , it checks if user is authorized to access this page or not. So if client making request is with in IP<\/span> 198.16.X.X then resource is granted. If user is not from this IP<\/span> range access will be denied for this resource.
\n9. If user authentication failed access be denied or next process will happen as defined in authentication fail action defined in policy manager.<\/p>\n

Other autherization<\/span> policy may be like
\n<\/strong>A. You can define specific users authorized for a resource.
\nB. A Group of users authorized for a resource.
\nC. Authorization based on Role
\nD. Based on IP<\/span> address of client<\/p>\n

You can also define time window under which that resource will be available so like Monday to Friday 9:00 AM to 5:30 PM<\/em>More on Oracle-Oblix<\/span> COREid<\/span>,Oracle Access Manager coming soon…
\n<\/strong>Difference between WebGate<\/span>\/Access Gate.
\nIdentity Server, Web Pass, Policy Manager, Access Server <\/em><\/em><\/p>\n

http:\/\/teachMeOracle.com\/forum<\/p>\n","protected":false},"excerpt":{"rendered":"

For basics on Access Manager (earlier Oblix COREid and now Oracle Identity Management Component) follow previous links – Access Manager […]<\/p>\n","protected":false},"author":115,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[1],"tags":[],"class_list":["post-137","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"\nAccess Manager: WebGate Request Flow -<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Access Manager: WebGate Request Flow -\" \/>\n<meta property=\"og:description\" content=\"For basics on Access Manager (earlier Oblix COREid and now Oracle Identity Management Component) follow previous links – Access Manager […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/\" \/>\n<meta property=\"article:published_time\" content=\"2007-04-15T20:03:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2008-07-27T19:13:39+00:00\" \/>\n<meta name=\"author\" content=\"Masroof Ahmad\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Masroof Ahmad\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/\",\"url\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/\",\"name\":\"Access Manager: WebGate Request Flow -\",\"isPartOf\":{\"@id\":\"https:\/\/onlineappsdba.com\/#website\"},\"datePublished\":\"2007-04-15T20:03:00+00:00\",\"dateModified\":\"2008-07-27T19:13:39+00:00\",\"author\":{\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\"},\"breadcrumb\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/onlineappsdba.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Access Manager: WebGate Request Flow\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/onlineappsdba.com\/#website\",\"url\":\"https:\/\/onlineappsdba.com\/\",\"name\":\"\",\"description\":\"Oracle Implementation & Training Experts\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/onlineappsdba.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\",\"name\":\"Masroof Ahmad\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"caption\":\"Masroof Ahmad\"},\"url\":\"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Access Manager: WebGate Request Flow -","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/","og_locale":"en_US","og_type":"article","og_title":"Access Manager: WebGate Request Flow -","og_description":"For basics on Access Manager (earlier Oblix COREid and now Oracle Identity Management Component) follow previous links – Access Manager […]","og_url":"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/","article_published_time":"2007-04-15T20:03:00+00:00","article_modified_time":"2008-07-27T19:13:39+00:00","author":"Masroof Ahmad","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Masroof Ahmad","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/","url":"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/","name":"Access Manager: WebGate Request Flow -","isPartOf":{"@id":"https:\/\/onlineappsdba.com\/#website"},"datePublished":"2007-04-15T20:03:00+00:00","dateModified":"2008-07-27T19:13:39+00:00","author":{"@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb"},"breadcrumb":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/onlineappsdba.com\/index.php\/2007\/04\/15\/access-manager-webgate-request-flow\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/onlineappsdba.com\/"},{"@type":"ListItem","position":2,"name":"Access Manager: WebGate Request Flow"}]},{"@type":"WebSite","@id":"https:\/\/onlineappsdba.com\/#website","url":"https:\/\/onlineappsdba.com\/","name":"","description":"Oracle Implementation & Training Experts","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/onlineappsdba.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb","name":"Masroof Ahmad","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","caption":"Masroof Ahmad"},"url":"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/"}]}},"_links":{"self":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/137","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/users\/115"}],"replies":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/comments?post=137"}],"version-history":[{"count":0,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/137\/revisions"}],"wp:attachment":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/media?parent=137"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/categories?post=137"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/tags?post=137"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}