Use this panel to view and change whether the policy configuration of a WebSphere® Application Server service client is configured dynamically, based on the policies supported by its service provider. You can view or change how the client obtains the policy of the service provider; the client can use an HTTP GET request or a Web Services Metadata Exchange (WS-MetadataExchange) request. You can specify a policy set and binding to provide message-level security for WS-MetadataExchange requests or to specify HTTP transport and SSL transport configuration for HTTP GET requests.
Depending on your assigned security role when security is enabled, you might not have access to text entry fields or buttons to create or edit configuration data. Review the administrative roles documentation to learn more about the valid roles for the application server.
Specifies whether the client policy is based on the policy of the service provider, and how that policy is used.
Click HTTP GET request to obtain the policy of the service provider by using an HTTP GET request. The policy configuration must be in WS-PolicyAttachments format in the WSDL of the service provider.
This option is available when Apply the following policies is set to Client and provider policy or Provider policy only.
By default, the HTTP GET request is targeted at the URL for each service endpoint followed by ?WSDL.
When you apply a policy to a service, click Use the default request target to target the HTTP GET request at the URL for each service endpoint followed by ?WSDL.
If the attach point is for the service, then you can either select this default request target or you can choose to specify an alternative request target using the Specify request target option.
If the attach point is for the application then the default request target will be used.
When you apply a policy to a service, click Specify request target to change the target for acquiring provider policy using an HTTP GET request. Enter the URL for the location of the provider policy in the field.
This option is available when HTTP GET request is selected and you apply a policy to a service.
When you apply a policy to an application, this option is not available.
Select Attach a system policy set to the HTTP GET request to set HTTP transport and SSL transport configuration for the HTTP GET request. This option is available when HTTP GET request is selected as the method to be used to obtain the provider policy and when Specify request target is selected and completed.
If you do not specify a policy set you will inherit the HTTP transport and SSL transport configuration from the application.
Select the policy set you require from the list to provide HTTP transport and SSL transport configuration for the HTTP GET request. Select from system policy sets that contain solely HTTP transport policies, solely SSL transport policies, or both; the policy set cannot contain other policy types.
This option is available when Attach a system policy set to the HTTP GET request is selected and the Specify request target is selected and completed.
Select the binding you require from the list for the HTTP GET request. You can select from Global Default Bindings or General client/provider policy set bindings, which are specific to the individual service.
This option is available when Attach a system policy set to the HTTP GET request is selected and the Specify request target is selected and completed.
The value of Default will result in the Global Default Binding being used.
Click WS-MetadataExchange to obtain the policy of the service provider by using a WS-MetadataExchange GetMetadata request. The policy configuration must be in WS-PolicyAttachments format in the WSDL of the service provider.
This option is available when Apply the following policies is set to Client and provider policy or Provider policy only.
Select Attach a system policy set to the WS-MetadataExchange request to set message-level security for the WS-MetadataExchange request. By default, this option is not selected and the transport policy of the application is used. This option is available when WS-MetadataExchange request is selected.
When Attach a system policy set to the WS-MetadataExchange request is selected, the Policy set and Binding lists are available. If you select Attach a system policy set to the WS-MetadataExchange request, you must also select a policy set and a binding.
Select the policy set you require from the list to provide message-level security for the WS-MetadataExchange request. You can select from system policy sets that contain only WS-Security policies, only WS-Addressing policies, or both. The default policy set is SystemWSSecurityDefault.
System policy sets are used for system messages that are not business-related, for example, messages that apply qualities of service (QoS), including the messages that are defined in the WS-MetadataExchange protocol.
Note that any transport policy of the application is always used.
This option is available when Attach a system policy set to the WS-MetadataExchange is selected.
Select the binding you require from the list to provide message level security for the WS-MetadataExchange request. You can select from Global Default Bindings or General client/provider policy set bindings, which are specific to the individual service.
This option is available when Attach a system policy set to the WS-MetadataExchange is selected.
The value of Default will result in the Global Default Binding being used.