Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Application Integration
  • All Products

Table of Contents

Search

  1. Preface
  2. Part 1: Using Process Developer
  3. Part 2: Creating and Modifying Processes
  4. Part 3: Functions, Events, Errors, and Correlation
  5. Part 4: Testing and Deployment
  6. Part 5: Process Central and Process Server (On-Premises)

Process Developer

Process Developer

Back Next

Identity Service

Identity Service

An identity service provides a way to look up users and groups based on a defined set of attributes. The Process Server support for an identity service is based on Lightweight Directory Access Protocol (LDAP), JDBC, or a file-based service.
You can create a process that includes identity-based activities. As a prerequisite, in the Process Console, you must provide the communication details for access to your directory service. When the process runs, the user or group specified in the process is looked up in your directory service.
Any BPEL process that implements identity-based activities imports the WSDL provided with the Process Server. The name of the WSDL is
identity.wsdl
, and in the Participants view wizards, it is a System Service named
identity search
.
The WSDL contains the following operations:
Operation Name
Description
findRolesByPrincipal
Returns a list of roles for the named principal. For example
User1
 is a member of
Administration
 and
Finance
.
findRoles
Returns a list of roles, such as
Marketing
,
Finance
, and
DnsAdmins
 that are defined in the directory service.
findIdentitiesByRole
Returns a list of identities for the named roles
findIdentities
Returns a list of identities that includes user name and email address
Specifies which roles and principals to include and exclude from the results
The query is comprised of include and exclude statements. The roles or principals listed under the include element are included in the result set while the ones listed under the exclude element are excluded.
assertPrincipalInQueryResult
For a given principal, make sure the user exists in the final result of the query.
You can use this operation for fault handling. It is good for checking permissions.
assertPrincipalInQueryResultwithResponse
Same as above with response
countIdentities
Receive a count of the users and groups requested
Building an Identity-Based Activity
Use identities in an alert service, for example, to send email to a group when a process is suspended on an uncaught fault.
You can also use identities in a BPEL process for branching, based on a group. For example, build one branch of an activity for managers, another for customer service representatives.
Build the assign activities you need to invoke the identity service. You can generate literal contents for a variable based on the
aeid:identityQuery
 element.
Here is an example: 
<aeid:IdentityQuery xmlns:aeid="http://schemas.active-endpoints.com/identity/2007/01/identity.xsd" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="aeid:IdentityQuery">
<aeid:include>
<aeid:group>Development</aeid:group>
<aeid:user>user1</aeid:user>
<aeid:id>CN=Kim Pan,CN=Users,DC=aedomain,DC=active-endpoints,DC=local</aeid:id>
</aeid:include>
</aeid:IdentityQuery>
Note that the
<aeid:id>
 element above shows an example of looking up a user in a LDAP directory by distinguished name (DN). For JDBC, the lookup is the primary key in the database. For
tomcat-users.xml
, the id is the same as the user name.
Add other programming logic, as desired.
In the PDD, for the partner role, System Service is pre-selected as a custom invoke handler. The PDD entry looks similar to the following: 
<partnerLink name="provider">
    <partnerRole endpointReference="dynamic"
          invokeHandler="system"/>
</partnerLink>
Deploying a Process as an Identity Service
You can deploy your process and make it available as a standard document literal service for the My Role partner link. Note that in the BPR, there are no WSDL or XSD. They are already deployed and available on the server.
0 COMMENTS
We’d like to hear from you!