IBM Worklight -如何在Worklight控制台启用应用程序的真实性?

时间:2020-12-08 22:10:59

I tried to follow the tutorial at this url, the tutorial is so straight forward but I just couldn't get the correct outcome.

我试着按照这个url来学习教程,教程太直接了,但是我就是不能得到正确的结果。

below is my authenticationConfig.xml

下面是我authenticationConfig.xml

<securityTests>
  <customSecurityTest name="custom-mobilesecurityTest">
    <test realm="wl_antiXSRFRealm" step="1"/>
    <test realm="wl_authenticityRealm" step="2"/>
    <test realm="HeaderAuthRealm" isInternalUserID="true" step="3"/>
  </customSecurityTest>
</securityTests>

But the App Authentication appeared in console is always "Access Disabled", I can't enable it. Did I missing anything here?

但在控制台上出现的应用程序认证总是“访问禁用”,我无法启用它。我有漏掉什么吗?

IBM Worklight -如何在Worklight控制台启用应用程序的真实性?

1 个解决方案

#1


5  

It would be more helpful if you would mention what you've actually done, because configuring authenticationConfig.xml is only 1 step of several.

如果您能提到您实际做了什么,那将会更有帮助,因为配置authenticationConfig。xml只是几个步骤中的一个。

Also note that for App Authenticity to really work and not use dummy implementation, you must use the Consumer edition of IBM Worklight (i.e., be a paying customer and install the correct version of Worklight Studio and Worklight Server).

还要注意的是,要让应用程序的真实性发挥作用,而不是使用虚拟实现,您必须使用IBM Worklight的Consumer版本(例如:,成为付费用户,安装正确版本的Worklight Studio和Worklight Server)。


I believe that for your problem, you have not done step 2 below.

我相信对于你的问题,你还没有完成下面的第二步。


Steps to enable App Authenticity:

启用App真实性的步骤:

  1. Configure a security test that has the wl_authenticityRealm realm:

    配置具有wl_authenticityRealm的安全测试:

    <customSecurityTest name="customTests">
         <test realm="wl_antiXSRFRealm" step="1"/>
         <test realm="wl_authenticityRealm" step="1"/>
         <test realm="wl_remoteDisableRealm" step="1"/>
         <test realm="wl_anonymousUserRealm" isInternalUserID="true" step="1"/>
         <test realm="wl_deviceNoProvisioningRealm" isInternalDeviceID="true" step="2"/>
    </customSecurityTest>
    

    ^ This is mentioned in slide 9

    ^这是幻灯片9中提到

  2. Place this securityTest on the environment(s) in application-descriptor.xml, for example:

    将这个securityTest放在应用程序描述符中的环境中。xml,例如:

    <android version="1.0" securityTest="customTests">
    
  3. For Android, generate the public signing key:

    对于Android,生成公开签名键:

    <android version="1.0" securityTest="customTests">
            <worklightSettings include="true"/>
            <security>
                <encryptWebResources enabled="false"/>
                <testWebResourcesChecksum enabled="false" ignoreFileExtensions="png, jpg, jpeg, gif, mp4, mp3"/>
                <publicSigningKey>MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBdfdsfdsfiQKBgQCPCbaCfAfnAqQ12/S5LLfA4cBz/3INyLRPhFGSVFztdWNzPhrna1xDc8/3V1sUIW2odfdfddfdfffdR2n3dAnNMVydfdfdfv68gmU5qVCN4LxSKKRAj7VVbhBxBIEt5MbY+c0o7NZ2Pgu/moJee8Wgu8veZ1TJntYn+cWCYuI/JSnA9nsskwhSdPHK32edsfsdfdfQIDAQAB</publicSigningKey>
            </security>
        </android>
    

    ^ This is mentioned in slides 10-13

    ^这是幻灯片中提到10 - 13

  4. For iOS, place the app bundleId:

    对于iOS,放置app bundleId:

    <iphone bundleId="com.worklight.test" version="1.0" securityTest="customTests">

    < iphone bundleId = " com.worklight。测试”version = " 1.0 " securityTest = " customTests " >

    ^ This is mentioned in slides 10-13

    ^这是幻灯片中提到10 - 13

  5. Run As > Run on Worklight Development Server
  6. 作为>运行在Worklight开发服务器上

Now the App Authenticity dropdown should be enabled for you in Worklight Console.

现在应用的真实性下拉应该为你在工作灯控制台。

#1


5  

It would be more helpful if you would mention what you've actually done, because configuring authenticationConfig.xml is only 1 step of several.

如果您能提到您实际做了什么,那将会更有帮助,因为配置authenticationConfig。xml只是几个步骤中的一个。

Also note that for App Authenticity to really work and not use dummy implementation, you must use the Consumer edition of IBM Worklight (i.e., be a paying customer and install the correct version of Worklight Studio and Worklight Server).

还要注意的是,要让应用程序的真实性发挥作用,而不是使用虚拟实现,您必须使用IBM Worklight的Consumer版本(例如:,成为付费用户,安装正确版本的Worklight Studio和Worklight Server)。


I believe that for your problem, you have not done step 2 below.

我相信对于你的问题,你还没有完成下面的第二步。


Steps to enable App Authenticity:

启用App真实性的步骤:

  1. Configure a security test that has the wl_authenticityRealm realm:

    配置具有wl_authenticityRealm的安全测试:

    <customSecurityTest name="customTests">
         <test realm="wl_antiXSRFRealm" step="1"/>
         <test realm="wl_authenticityRealm" step="1"/>
         <test realm="wl_remoteDisableRealm" step="1"/>
         <test realm="wl_anonymousUserRealm" isInternalUserID="true" step="1"/>
         <test realm="wl_deviceNoProvisioningRealm" isInternalDeviceID="true" step="2"/>
    </customSecurityTest>
    

    ^ This is mentioned in slide 9

    ^这是幻灯片9中提到

  2. Place this securityTest on the environment(s) in application-descriptor.xml, for example:

    将这个securityTest放在应用程序描述符中的环境中。xml,例如:

    <android version="1.0" securityTest="customTests">
    
  3. For Android, generate the public signing key:

    对于Android,生成公开签名键:

    <android version="1.0" securityTest="customTests">
            <worklightSettings include="true"/>
            <security>
                <encryptWebResources enabled="false"/>
                <testWebResourcesChecksum enabled="false" ignoreFileExtensions="png, jpg, jpeg, gif, mp4, mp3"/>
                <publicSigningKey>MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBdfdsfdsfiQKBgQCPCbaCfAfnAqQ12/S5LLfA4cBz/3INyLRPhFGSVFztdWNzPhrna1xDc8/3V1sUIW2odfdfddfdfffdR2n3dAnNMVydfdfdfv68gmU5qVCN4LxSKKRAj7VVbhBxBIEt5MbY+c0o7NZ2Pgu/moJee8Wgu8veZ1TJntYn+cWCYuI/JSnA9nsskwhSdPHK32edsfsdfdfQIDAQAB</publicSigningKey>
            </security>
        </android>
    

    ^ This is mentioned in slides 10-13

    ^这是幻灯片中提到10 - 13

  4. For iOS, place the app bundleId:

    对于iOS,放置app bundleId:

    <iphone bundleId="com.worklight.test" version="1.0" securityTest="customTests">

    < iphone bundleId = " com.worklight。测试”version = " 1.0 " securityTest = " customTests " >

    ^ This is mentioned in slides 10-13

    ^这是幻灯片中提到10 - 13

  5. Run As > Run on Worklight Development Server
  6. 作为>运行在Worklight开发服务器上

Now the App Authenticity dropdown should be enabled for you in Worklight Console.

现在应用的真实性下拉应该为你在工作灯控制台。