Use this page to specify a reference to the message parts for signature
and encryption that are defined in the deployment descriptors.
To view this administrative console page on the server level for signing
information, complete the following steps:
- Click Servers > Application Servers > server_name.
- Under Security, click Web services: Default bindings for Web services
security.
- Under Default generator bindings or Default consumer bindings, click Signing
information > signing_information_name.
- Under Additional properties, click Part references.
- Click New to create a part reference or click the name of an existing
configuration to modify its settings.
To view this administrative console page on the application level for signing
information, complete the following steps.
Note: Part
references are available through the administrative console using Version
6.0.x applications only.
- Click Applications > Enterprise applications > application_name .
- Under Related items, click EJB modules or Web
modules > URI_name.
- Under Additional properties, you can access the signing
information for the following bindings:
- For the Request generator (sender) binding, click Web services: Client
security bindings. Under Request generator (sending) binding, click Edit
custom.
- For Response consumer (receiver) binding, click Web services: Client
security bindings. Under Response consumer (receiver) binding, click Edit
custom.
- For the Request consumer (receiver) binding, click Web services: Server
security bindings. Under Request consumer (receiver) binding, click Edit
custom.
- For the Response generator (sender) binding, click Web services: Server
security bindings. Under Response generator (sender) binding, click Edit
custom.
- Under Required properties, click Signing information > signing_information_name.
- Under Additional properties, click Part references.
- Click New to create a part reference or click the name of an existing
configuration to modify its settings.
You must specify a part name and select a part reference before specifying
additional properties. Before specifying the digest method properties that
are accessible under Additional properties, specify a digest method algorithm
on this panel. If you specify none and click Digest method,
an error message is displayed.
Specifies the name of the <integrity> or <requiredIntegrity>
element for the signed part of the message or it specifies the name of the <confidentiality>
or <requiredConfidentiality> element for the encrypted part of the message
in the deployment descriptor.
The part names that are defined in the deployment descriptor are listed
as options in this field. This field is displayed for the binding configuration
on the application level only.
Specifies the algorithm Uniform Resource Identifier (URI) of the
digest method that is used for the signed part that is specified by the part
reference.
This product provides the following predefined algorithm
URI: http://www.w3.org/2000/09/xmldsig#sha1. If you want to specify
a custom algorithm, you must configure the custom algorithm in the Algorithm
URI panel before setting the digest method algorithm.
To access the Algorithm URI panel, complete the following steps for the
server level:
- Click Servers > Application servers > server_name.
- Under Security, click Web services: Default bindings for Web services
security.
- Under Additional properties, click Algorithm mappings > algorithm_factory_engine_class_name >
Algorithm URI > New.
The specified algorithms are listed as options for this field.
When you specify the Algorithm URI, you also must specify an algorithm
type. To have the algorithm display as a selection in the Digest method algorithm
field on the Part reference panel, you must select Digest value calculation
(Message digest) as the algorithm type.