To configure the client for request encryption, specify which message
parts to encrypt when configuring the client.
Before you begin
Important: There is an important distinction between Version
5.x and Version 6 and later applications. The information in this article
supports Version 5.x applications only that are used with WebSphere® Application
Server Version 6.0.x and later. The information does not apply to Version
6.0.x and later applications.
Prior to completing
these steps, read either of the following topics to familiarize yourself with
the
WS Extensions tab and the
WS Binding tab in the Client Deployment
Descriptor Editor within an assembly tool:
These two tabs are used to configure the Web services security extensions
and Web services security bindings, respectively.
About this task
Complete the following steps to specify which message parts to
encrypt when configuring the client for request encryption:
Procedure
- Launch an assembly tool. For more information, see the
related information on Assembly Tools.
- Switch to the Java™ Platform, Enterprise Edition (Java EE)
perspective. Click Window > Open Perspective > J2EE.
- Click Application Client Projects > application_name >
appClientModule > META-INF.
- Right-click the application-client.xml file, select Open
with > Deployment descriptor editor.
- Click the WS extensions tab, which is located at the bottom
of Client Deployment Descriptor Editor within the assembly tool.
- Expand Request sender configuration > Confidentiality.
Confidentiality refers to encryption while integrity refers to digital
signing. Confidentiality reduces the risk of someone understanding the message
flowing across the Internet. With confidentiality specifications, the message
is encrypted before it is sent and decrypted when it is received at the correct
target. For more information on encrypting , see XML encryption.
- Select the parts of the message that you want to encrypt by clicking Add.
You can select one of the following parts:
- Bodycontent
- User data portion of the message
- Usernametoken
- Basic authentication information, if selected