Username and passwords can be extracted from the Service Accounts. Following function extracts the data from the service account:
fn-bea:lookupBasicCredentials( $service-account as xs:string ) as UsernamePasswordCredential
The UsernamePasswordCredential element contains username and unencrypted password:
<UsernamePasswordCredential xmlns="http://www.bea.com/wli/sb/services/security/config"> <username>name<username> <password>unencrypted-password</password> </UsernamePasswordCredential>
step 1: put the result of the “bea:lookupBasicCredentials” function call in a variable (ex: useraccount) in an assing action
step 2: you can use it as:
The password will be plaintext so also visible in de sbconsole. It is thus possible to log the password so this mathod can cause a security leak.