Using Web Services Security SPIs
You can use the GenericSecurityTokenFactory SPIs to create security tokens for use by the WS-Security runtime. These security tokens can be used for, but are not be limited to, WSSAPIs, JAAS login modules, and custom security tokens.
About this task
Through various method signatures, you can use the GenericSecurityTokenFactory
SPI to:
- Generate a dynamic UsernameToken using a stacked JAAS login module
- Create custom security tokens for Web services security
- Generate and consume custom tokens with the Generic Issue Login Modules.
- Generate and consume dynamic X.509 tokens using a stacked JAAS login module
- Generate a dynamic LTPA token using a stacked JAAS login module
- Generate a dynamic Kerberos token using a stacked JAAS login module
- Replace the authentication method of the UsernameToken consumer using a stacked JAAS login module
The location of the com.ibm.websphere.wssecurity.wssapi.token.GenericSecurityTokenFactory class is (wasHome)/plugins/com.ibm.wsfp.main.jar (wasHome)/runtimes/com.ibm.jaxws.thinclient_8.5.0.jar, and wasHome)/dev/was_public.jar.
Procedure
- Generate a dynamic UsernameToken using a stacked JAAS login module.
- Create a custom token for Web services security.
- Generate and consume custom tokens with the Generic Issue Login Modules.
- Generate and consume dynamic X.509 tokens using a stacked JAAS login module.
- Generate a dynamic LTPA token using a stacked JAAS login module.
- Generate a dynamic Kerberos token using a stacked JAAS login module.
- Replace the authentication method of the UsernameToken consumer.