Use this task to specify abstract intents in the Service
Component Architecture (SCA) composite file to achieve a quality of
service for secure connection using Secure Sockets Layer (SSL).
Before you begin
Determine whether your application requires the use of
SSL.
About this task
Intents and policy sets can be used to configure web service
bindings to achieve a secure connection.
Procedure
- Configure administrative and application security for the
server.
To secure the service so that it only accepts
secure requests, administrative and application security must be enabled
for the server.
- Configure the service binding to require an SSL connection
by requiring the confidentiality.transport intent.
<service name="AccountService">
<binding.ws
requires="confidentiality.transport"
... />
</service>
An SSL connection is also required if
an attached web service policy set includes the SSLTransport policy
type. For information about attaching policy sets, refer to "Mapping
abstract intents and managing policy sets."
Services in OASIS
composites that are wired using an SCA target must require the confidentiality.transport intent.
- 3. Configure the reference binding to require an SSL connection
by requiring the confidentiality.transport intent.
<reference name="AccountService">
<binding.ws
requires="confidentiality.transport"
... />
</reference>
An SSL connection is also required if
an attached web service policy set includes the SSLTransport policy
type. For information about attaching policy sets, refer to "Mapping
abstract intents and managing policy sets."
If you are not
using an SCA target to wire the reference to a service, the confidentiality.transport intent
simply enforces that the endpoint address specified in the composite
file or WSDL file uses the https protocol. If you are using an SCA
target, the confidentiality.transport intent causes
SCA to use the SSL port of the target service. Services in OASIS composites
that are wired using an SCA target must require the confidentiality.transport intent.
Results
When you finish this task, you have configured web service
bindings to use SSL.
What to do next
You can proceed to configuring other application specific
bindings for your policy sets.