•  05-07-2019
  •  | 
  •  

Question

I'm building a web application that will have access to PeopleSoft's database via jdbc. Is it possible that I can use PeopleSoft's id/password for my custom application, so users accessing my website will not have to have another username/password?

Was it helpful?

Solution

Peoplesoft stores user details in the table PSOPRDEFN.

You will be able to verify the username against: PSOPRDEFN.OPRID.

The password field is: OPERPSWD.

Unfortunately the encryption function used for this field: hash() is available only from within peoplecode.

If you want to use a single sign on you should be able to do so by customizing the USERMAINT.gbl component perhaps in the saveprechange peoplecode, to save the password in a second field of your choice with an encryption algorithm that you can implement from JDBC as well.

OTHER TIPS

If you want to reuse PeopleSoft security, you'd need to connect at a higher level than JDBC straight into the database. You could look at a component interface (codeable in Java) or send a SOAP message into PeopleSofts Integration Gateway - both methods would authenticate you against peopleSoft using its own security mechanisms.

The old way was to customize psuser.c to your needs and recompile as a new dll, used it your program, assuming you're on a Microsoft platform. As mentioned above, you could have a peoplesoft developer create a component interface ( or use the one that is delivered ). You can export wrapper Java or C/C++ code from a CI, a template. This code can then be used in an external program to call the CI. one way or the other, you have to interface with peopletools to call their decrypt for passwords.

Depending on how dynamic your business is, whether you add lots of employees each day, you could export psoprdefn using app messaging to another database. On the send, you could encrypt passwords however you like. But as you can surmise, this would not be real-time.

One thing I remember doing long ago was have a peoplesoft tech person develop a page the sole functionality of which was to call my java class and which obtained user/pswds as needed. Once I had them, I was good to go.

You can use the psjoa.jar , in that way you can signon via app.server using the same users and passwords in the psoprdefn table.

PeopleSoft has an LDAP integration ability but it has to be configured. If you are accessing via a Java wrapper around a component interface, a special account can be set up in PeopleSoft with access only to the underlying component, but the login/password would have to be passed into the component interface. This can be encrypted or sent over https.

PeopleSoft also has what it calls "row level" security - the ability to partition data sets so that for example your code could only access employee data within a specific business unit or accounting info for a particular line of business. This is all controlled within the PeopleSoft online security application.

Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
scroll top