[AIX Solaris HP-UX Linux Windows][z/OS]

Configuring SCA web service binding to use SSL

Use this task to specify abstract intents in the Service Component Architecture (SCA) composite file to achieve a quality of service for secure connection using Secure Sockets Layer (SSL).

Before you begin

Determine whether your application requires the use of SSL.

About this task

Intents and policy sets can be used to configure web service bindings to achieve a secure connection.

Procedure

  1. Configure administrative and application security for the server.

    To secure the service so that it only accepts secure requests, administrative and application security must be enabled for the server.

  2. Configure the service binding to require an SSL connection by requiring the confidentiality.transport intent.
    <service name="AccountService">
      <binding.ws 
         requires="confidentiality.transport"
         ... />
    </service>

    An SSL connection is also required if an attached web service policy set includes the SSLTransport policy type. For information about attaching policy sets, refer to "Mapping abstract intents and managing policy sets."

    Services in OASIS composites that are wired using an SCA target must require the confidentiality.transport intent.

  3. 3. Configure the reference binding to require an SSL connection by requiring the confidentiality.transport intent.
    <reference name="AccountService">
      <binding.ws 
         requires="confidentiality.transport"
         ... />
    </reference>

    An SSL connection is also required if an attached web service policy set includes the SSLTransport policy type. For information about attaching policy sets, refer to "Mapping abstract intents and managing policy sets."

    If you are not using an SCA target to wire the reference to a service, the confidentiality.transport intent simply enforces that the endpoint address specified in the composite file or WSDL file uses the https protocol. If you are using an SCA target, the confidentiality.transport intent causes SCA to use the SSL port of the target service. Services in OASIS composites that are wired using an SCA target must require the confidentiality.transport intent.

Results

When you finish this task, you have configured web service bindings to use SSL.

What to do next

You can proceed to configuring other application specific bindings for your policy sets.

Task topic    

Terms and conditions for information centers | Feedback

Last updated: April 20, 2014 08:46 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=phil&product=was-nd-mp&topic=twbs_sca_wsbind_tran_ssl
File name: twbs_sca_wsbind_tran_ssl.html