14-4 Developing Security Providers for Oracle WebLogic Server database.clonePoliciesForApplicationsourceAppId,appId; } public void deleteApplicationVersionString appId { System.out.printlnSimpleSampleAuthorizationProviderImpl.deleteApplicationVersion ; System.out.println\tapplication identifier\t= + appId; clear out policies for the application database.removePoliciesForApplicationappId; } public void deleteApplicationString appName { System.out.printlnSimpleSampleAuthorizationProviderImpl.deleteApplication; System.out.println\tapplication name\t= + appName; clear out policies for the application database.removePoliciesForApplicationappName; }

14.4.2 Generate an MBean Type Using the WebLogic MBeanMaker

When you generate the MBean type for your custom Authorization, Role Mapping, and Credential Mapping providers, you must also implement the MBean for your Versionable Application provider. The ApplicationVersionerMBean is a marker interface and has no methods. Example 14–2 shows how the SimpleSampleAuthorizer MBean Definition File MDF implements the ApplicationVersionerMBean MBean. Example 14–2 Implementing the ApplicationVersionerMBean MBeanType Name = SimpleSampleAuthorizer DisplayName = SimpleSampleAuthorizer Package = examples.security.providers.authorization.simple Extends = weblogic.management.security.authorization.DeployableAuthorizer Implements = weblogic.management.security.ApplicationVersioner PersistPolicy = OnUpdate

14.4.2.1 Use the WebLogic MBeanMaker to Create the MBean JAR File MJF

Once your have run your MDF through the WebLogic MBeanMaker to generate your intermediate files, and you have edited the MBean implementation file to supply implementations for the appropriate methods within it, you need to package the MBean files and the runtime classes for the custom Authorization, Role Mapping, or Credential Mapping provider, including the Versionable Application provider, into an MBean JAR File MJF. For a custom Authorization provider, these steps are described in Section 7.5.5.3, Use the WebLogic MBeanMaker to Create the MBean JAR File MJF. For a custom Role Mapping provider, these steps are described in Section 9.5.5.3, Use the WebLogic MBeanMaker to Create the MBean JAR File MJF. For a custom Credential Mapping provider, these steps are described in Section 11.4.2.3, Use the WebLogic MBeanMaker to Create the MBean JAR File MJF. Versionable Application Providers 14-5

14.4.3 Configure the Custom Versionable Application Provider Using the Administration Console

Configuring a custom Versionable Application provider means that you are adding the custom Versionable Application provider to your security realm, where it can be accessed by applications requiring application version services. Configuring custom security providers is an administrative task, but it is a task that may also be performed by developers of custom security providers. The steps for configuring a custom Versionable Application provider using the WebLogic Server Administration Console are described under Configuring WebLogic Security Providers in Securing Oracle WebLogic Server. 14-6 Developing Security Providers for Oracle WebLogic Server 15 CertPath Providers 15-1 15 CertPath Providers The WebLogic Security service provides a framework that finds and validates X509 certificate chains for inbound 2-way SSL, outbound SSL, application code, and WebLogic Web services. The Certificate Lookup and Validation CLV framework is a new security plug-in framework that finds and validates certificate chains. The framework extends and completes the JDK CertPath functionality, and allows you to create a custom CertPath provider. The following sections provide the background information you need to understand before adding certificate lookup and validation capability to your custom security providers, and provide step-by-step instructions for adding certificate lookup and validation capability to a custom security provider: ■ Section 15.1, Certificate Lookup and Validation Concepts