[Version 5.0.2 and later]Securing Web services using a pluggable token

Why and when to perform this task

WebSphere Application Server provides several different methods to secure your Web services; a pluggable token is one of these methods. You might secure your Web services using any of the following methods:Complete the following steps to secure your Web services using a pluggable token:

Steps for this task

  1. Generate a security token using the Java Authentication and Authorization Service (JAAS) CallbackHandler interface.
    The Web services security run time uses the JAAS CallbackHandler interface as a plug-in to generate security tokens on the client side or when Web services is acting as a client.
  2. Configure your pluggable token.
    To use pluggable tokens to secure your Web services, you must configure both the client request sender and the server request receiver. You can configure your pluggable tokens using either the WebSphere Application Server administrative console or the WebSphere Application Server Toolkit. For more information, see the following topics:

Related concepts
Pluggable token support
Lightweight Third Party Authentication
Related tasks
Securing Web services based on WS-Security



Searchable topic ID:   twbs_secplugtoken
Last updated: Jun 21, 2007 4:12:58 PM CDT    WebSphere Application Server Express, Version 5.0.2
http://publib.boulder.ibm.com/infocenter/wasinfo/index.jsp?topic=/com.ibm.websphere.exp.doc/info/exp/ae/twbs_secplugtoken.html

Library | Support | Terms of Use | Feedback