----Day11----

Security

Authentication--->
USER_ID & PW ---> <ICARD> -> NAME, DEPT, EMPID, BLOOD_GROUP

BASIC -> USER_ID & PW (CLIENT ID & SECRET)

->HEADER -> BASE64 FORMAT
http - 401 <USER_ID & CRED> ARE WRONG

AUTHORIZATION--->
-> 403 --->
-> OAUTH2.0 -->

-> AUTHRIZATION SERVER ----> TOKEN -> VALIDITY ->

-> RESOURCE SERVER --------> RESOURCES -> PROD_ID ----> DETAILS ABOUT PROD

ENCODING & DECODING ->

CERTIFICATE BASE AUTHENTICATION---->

HANDSHAKING

CI REQUEST -> HTTPS

ERROR - HANDSHAKING ---> CERTIFICATE OF HTTPS IS EXPECTED
-> USER-D & PW (CLINENTID &SECRET)

https://web.postman.co/workspace/My-Workspace~25495fe6-284d-407e-8176-
a52e9aaa37a8/request/17770347-639c92b8-0655-4bab-818a-6505f5c369e4

---> DEMO OUTH2.0 <CI SERVICE>

---> SF OUTH2.0 ----> I WANT TO ACCESS SF ---> OAUTH 2.0 --->
CONFIGURATION FOR SF OAUTH2.0
-> SF / AUTH2.0 --->
-> CI --->
-> SF ---> PASS
CREDENTAILS....

-> BASIC -> AUG2023

-> AUTHRIZATION SERVER ----> TOKEN -> VALIDITY ->

-> RESOURCE SERVER --------> RESOURCES -> PROD_ID ----> DETAILS ABOUT PROD

------------------------------------
{
"oauth": {
"clientid": "sb-0895-d23c-470a-9e0c-05b93d6c9e48!b1",
"clientsecret": "3be-db35-41fe-a770-c41538b31cd1$j0DO5e_u0gCiY",
"url": "https://080f7ecetrial.it-cpitrial05.cfapps.us10-
001.hana.ondemand.com",
"createdate": "2022-11-03T01:58:06.517Z",
"tokenurl":
"https://080f7ecetrial.authentication.us10.hana.ondemand.com/oauth/token"
}
}
AUTH SERVER - https://080f7ecetrial.authentication.us10.hana.ondemand.com/oauth/
token

step1- https://080f7ecetrial.authentication.us10.hana.ondemand.com/oauth/token?
grant_type=client_credentials

step2 - https://080f7ecetrial.it-cpitrial05-rt.cfapps.us10-001.hana.ondemand.com/
http/Demo_Batch29
-> Auth -> no auth
-> pass barer token -> above step1

-------------------------------------------------------------
ENVIRONMENTS -> CF / NEO <> --->

2012 ---> PI/PO -> SALESFORCE (WEBSERVICE)--> TOKEN (ZTABLE) ->>> INVLAID TOKEN ---
> FETCH NEW ---> OVER ZTABLE

sftp/httpS--->

TRANSPORT LEVEL ----HTTPS/SFTP <SSL>

MESSAGE LEVEL ---- DIG SEG, PGP

PGP --->
PUBLIC -> ENCRYPTING
PRIVATE -> DECRYTING

---ENCRYPTIO SCNARIO---
SOURCE <SF,FG,JAVA APP, DB....>
<CI> DECRYPTING/ENCRYPTING ----> MESSAGE
---> PAYROLL----> PUBLIC KEY <ENCRYPT FILE> -> SFTP<ADP>
-> ADP WILL PROVIDE ME THE PUBLIC

TAREGT <ADP, 3RD PARTY>

----> PRIVATE KEY <DECRYPT> FILE (PAYROLL)

---DECRYPTION SCENARIO---
SOURCE <SFTP> ---> PGP ENCRYPTED (CONTAINS NEW EMP)
<CI> ----> PGP ENCRYPTED -> PGP DECRYP <PRIVATE KEY) --> MESSAGE ---->
FINAL TRANFORMATION
UPDATE NEW EMP IN DB/SF
TAREGT <SF>
----> NEW EMPL WILL BE CREATED

-------CI-------
-> KLEOPATRA ----> MANAGE KEYS
---CI --> KEY1 (PUBKEY)
--> KEY2 (pubkey)
IMPORT--->
PUBLIC KEY --> NO PASPHRASE
PRIVATE KEY -> PASSPHRASE

KEY PAIR (PRIVATE + PUBLIC KEY) ---> PASSPHASE IS MAINTED (PASSWORD)

-----BEGIN PGP MESSAGE-----
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=ESEU
-----END PGP MESSAGE-----