Configuring shared key of Token

Currently, configuring shared key is the key step for creating Token.

Configuring shared key

The Token generated by SuperMap iServer is an encrypted message string generated through shared key. The role of the shared key is to encrypt user information for generating Token. The more complex the shared key is, the higher security the token is.

When setting the shared key of Token, log in Service Manager first, access the Security> Security Config page (http://localhost:8090/iserver/manager/security), the shared key can be viewed or modified. Generate key button on the page can help you to generate a shared key, by clicking the Modify key can take the new shared key into effect.

Recommendations about Token shared key configuration:

• Length of the shared key should be set to no less than 16 characters, and any characters can be used including non-alphanumeric characters.
• Random sequence of characters are recommended as the shared key. Because there is no need to remember the shared key or the places where the key is used, complex shared key will not cause inconvenience.
• If the shared key is changed, all the applied Token will be invalid, the Web Application created by clients needs to reapply Token and update the program to access the services.
• In a highly secure environment, periodically changing Token shared key is recommended.