WebSphere WebSphere Application Server Network Deployment, Version 6.1.x Operating Systems: AIX, HP-UX, i5/OS, Linux, Solaris, Windows, z/OS

Invoking outbound services over HTTPS

Use Secure Sockets Layers (SSL) to allow the service integration bus to invoke external Web services that include https:// in their addresses.

About this task

There are two ways to set the service integration bus to use SSL with SOAP over HTTPS messages:

By default, each managed endpoint is already configured to use SSL. However you will need to modify the default configuration, for example to add information about the keys and keystores that the external Web service uses.

Alternatively, you can use a JAX-RPC handler to set the SSL configuration. You might want to do this because you are upgrading from a previous version of WebSphere Application Server and your configuration is already set to work in this way, or because you need to target an SSL configuration very precisely; for example to secure each service or each invocation.

To configure SSL certificate and key management for a managed endpoint, see Creating a Secure Sockets Layer configuration.

To use a JAX-RPC handler to set the SSL configuration, complete the following steps:

Procedure

  1. Start the administrative console.
  2. Create a new Secure Sockets Layer repertoire configuration entry.
  3. Create a new JAX-RPC handler class that sets the property ssl.configName to a value that is the name of the SSL repertoire configuration that you have just created. For example:
    public class SSLHandler extends GenericHandler {
    
        public QName[] getHeaders() {
            return null;
        }
    
        public boolean handleRequest(MessageContext mc) {
            
            // Insert SSL property
            mc.setProperty("ssl.configName", "myNode/SSLConfig");
            return super.handleRequest(mc);
        }
    }
  4. Create a new JAX-RPC handler configuration for the handler.
  5. Create a new JAX-RPC handler list, then select the handler that sets the SSL configuration name property and add it to the handler list.
  6. Use the instructions given in Modifying an existing outbound service configuration to navigate to the administrative console page Service integration > Buses > [Content Pane] bus_name > [Services] Outbound Services > [Content Pane] service_name > Outbound Ports > [Content Pane] port_name, where service and port indicate the outbound port that is to use SSL.
  7. Set the JAX-RPC Handler list property by selecting, from the drop-down list, the handler list that sets the SSL configuration name property.
  8. Save your changes to the master configuration.
Related tasks
Overriding the default security configuration between bus-enabled Web services and a secure bus
Configuring secure transmission of SOAP messages using WS-Security
Working with password-protected components
Related reference
Bus-enabled Web services troubleshooting tips

Task topic

Terms of use | Feedback


Timestamp icon Last updated: 26 February 2009
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.pmc.nd.multiplatform.doc/tasks/tjw_security_https.html

Copyright IBM Corporation 2004, 2009. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)