Web services policies
Using web services policies, you can define the qualities of service for your web services and clients.
Important: Applicable to WebSphere®
Application Server traditional
The product provides several types of web services policy:
- WS-Addressing
- Based on the World Wide Web Consortium (W3C) WS-Addressing specifications for web services. This family of specifications provides transport-neutral mechanisms to address web services and to facilitate end-to-end addressing. This specification provides asynchronous support.
- WS-Security
- Based on the WS-Secure Conversation (WS-SC) and WS-Security specifications, as well as the associated token profiles. The WS-Security specification and its associated token profiles define a way to send security tokens and provide message integrity and confidentiality. The WS-Secure Conversation specification establishes a secure context, based on shared keys, for the client and server to use for a series of messages. This standard provides a framework across organizations that defines how to secure the entire conversation. Use the WS-Security policy to define how the SOAP messages are secured. You can also use WS-Security policies to define the bootstrap policy that is used to acquire security context tokens. Security context tokens are used by secure conversation.
- WS-Reliable Messaging (WS-RM)
- Enables the sender and receiver to assure the quality of services in a set of messages. With this policy, you can address latency issues, maintenance interruption, and other problems that prevent messages from being completed. This quality assurance is critical for stateful applications.
- WS-Transaction
- Provides support for atomic transactions in a web services environment. This quality of service enables web service applications and the resources that they use to participate in distributed global transactions.
- HTTP Transport
- Applies HTTP features and HTTP connections polices to outbound messages. The response listener policy is enforced on inbound messages.
- SSL Transport
- Provides SSL transport security for the HTTP protocol with web services applications.