WS-Security configuration for an inbound request. This defines WS-Security requirements for the request consumed from the client and the response generated. The objects created may be applied to one or more inbound ports.
To view this page in the console, click the following path:
.
You can configure the service integration bus for secure transmission of SOAP messages by using tokens, keys, signatures and encryption in accordance with the Web Services Security (WS-Security) 1.0 specification.
Alternatively, you can configure the bus in accordance with the previous WS-Security specification, WS-Security Draft 13 (also known as the Web Services Security Core Specification). However, use of the WS-Security Draft 13 specification is deprecated, and you should only use it to allow continued use of an existing web services client application that has been written to the WS-Security Draft 13 specification.
You use an inbound configuration to secure the SOAP messages that pass between a service requester (client) and an inbound service (which acts as a target web service). The configuration specifies the level of security that you require (for example "The body must be signed"). This level of security is then implemented through the run-time information contained in the following types of WS-Security binding:
For WS-Security Version 1.0:
For WS-Security Draft 13:
WS-Security configurations are administered independently from any web service that uses them, so you can create an inbound configuration then apply it to many inbound services.
The Configuration tab shows configuration properties for this object. These property values are preserved even if the runtime environment is stopped then restarted. See the information center task descriptions for information about how to apply configuration changes to the runtime environment.
Identifies the version of the WS-Security specification this configuration uses.
Required | No |
Data type | String |
The type of service the WS-Security configuration applies to.
Required | No |
Data type | String |
The name of the inbound WS-Security configuration.
Required | Yes |
Data type | String |