To configure the client for request encryption, specify
which message parts to encrypt when configuring the client.
Before you begin
Important: There is an important distinction between
Version 5.x and Version 6 and later applications. The information
supports Version 5.x applications only that are used with WebSphere® Application Server Version 6.0.x and
later. The information does not apply to Version 6.0.x and
later applications.
Prior to completing these
steps, read either of the following topics to familiarize yourself
with the
WS Extensions tab and the
WS
Binding tab in the Client Deployment Descriptor Editor
within an assembly tool:
These two tabs are used to configure the Web Services Security
extensions and Web Services Security bindings, respectively.
About this task
Complete the following steps to specify which message
parts to encrypt when configuring the client for request encryption:
Procedure
- Launch an assembly tool. For more information,
see the related information on Assembly Tools.
- Switch to the Java Platform,
Enterprise Edition (Java EE)
perspective. Click .
- Click .
- Right-click the application-client.xml file,
select .
- Click the WS extensions tab, which
is located at the bottom of Client Deployment Descriptor Editor within
the assembly tool.
- Expand . Confidentiality
refers to encryption while integrity refers to digital signing. Confidentiality
reduces the risk of someone understanding the message flowing across
the Internet. With confidentiality specifications, the message is
encrypted before it is sent and decrypted when it is received at the
correct target. For more information on encrypting , see XML encryption.
- Select the parts of the message that you want to encrypt
by clicking Add. You can select
one of the following parts:
- Bodycontent
- User data portion of the message
- Usernametoken
- Basic authentication information, if selected
What to do next
After you specify which message parts to encrypt, you must
specify which method to use to encrypt the request message. See
Configuring the client for request encryption: choosing the encryption method for more
information.