IBM Business Automation Community Come for answers. Stay for best practices. All we’re missing is you. Join / Log in Ask a question
we have custom servlet added to ICN, and it has following security constraint added to have anonymous access, which means while accessing this custom servlet, it should not ask for authentication. The role we have added is Everyone as below. But it still asks for authentication. Is there any other role name that allows access without any sort of authentication?
<description>Define the container secured resource</description>
<description>User data constraints</description>
What documentation did you use to create and implement the custom servlet? Is the above code within your servlet or a plugin within ICN?
Are you trying to configure roles for use with a CPE backend repository? Where CPE is the authenticating repository configured for ICN?
If so, leveraging these role distinctions to remove the requirement to authenticate to ICN (and the authenticating repo) is not a functional use case.
Authentication is configured when ICN is deployed and that cannot be bypassed by any supported means:
ICN will always require some level of authentication.