Skip to content

Verify IDIM BCeID Client SOAP Web Service

Jump to bottom
Ian Liu edited this page Nov 28, 2024 · 7 revisions

Background

The purpose for FAM to use IDIM BCeID Client web service is the need to look up users (IDIR and Business BCeID) for assigning user roles. The service is a SOAP web service so it is XML based not REST. However, due to FAM is hosted on AWS platform and not in BC Gov's OpenShift platform with network boundary and security restrictions, FAM cannot make direct service call to the IDIM web service. In FAM there is a IDIM-Proxy repo component which is hosted on OpenShift platform and provides REST API for FAM to indirectly look up user information through IDIM web service. Developers might need to interface with IDIM BCeID web service for some troubleshooting purpose and make sure provided service from IDIM is working as intended.

prerequisite

  • Obtain latest Developers Guide - As of 2024-11, V2.10.0 version is attached here BCeID Client - New Web Services - Developers Guide - V2.10.0 (for BCeID WS V10).docx You need this to confirm service methods' spec and values.
  • Tool to make webservice call - SoapUI or other tools that can make service calls.
  • VPN connection tool - Like Cisco AnyConnect. You will need to connect with VPN into gov network to be able to make web service call.
  • Set of IDs and credentials for environments -
    • Online Service ID (OSID): This is a unique key given to each Online Service. This key will be used in conjunction with the service account to determine authorizations to access each method.
    • Service account credentials: Username/Password that you will need to add to the SOAP request auth header.
    • Requester's User GUID: One of the parameter required in SOAP field in request schema.

For the above OSID and service account, you can find at confluence page, on IDIM-Proxy OpenShift deployment (project e4ba30). A copy of service account credentials can also be found at FAM's AWS Secret Manager (PROD space).

Steps

Log into VPN:

  • Connect with "vpn2.gov.bc.ca"

    image image

Open SOAP web service client tool:

image image

Create a new project (first time):

  • Right click under 'Projects':

    image

  • Select New SOAP Project and enter initial WSDL:

    image

    • The initial WSDL information can be found at Developer's guide: Web service sites:

      image

      Web service:

      image

Scenarios

FDS Access Management (FAM)

User Guide

Operations Guide

Team Heartwood Notes

Developers

Clone this wiki locally