Editing WS-Security properties

Using the module deployment editor, you can edit WS-Security properties for your Web services exports and imports. The high-level tasks in editing WS-Security properties are essentially the same regardless of whether you are securing your exports and imports with authentication, signing, or encryption.

The high-level tasks in editing WS-Security properties are:

These tasks are described in the following steps:

  1. Specify the request generator properties for the import:
    1. In the Business Integration view, right-click the module that contains your import and select Open Deployment Editor. The module deployment editor opens.
    2. Click the Import WS-Security tab and then click the WS Extension tab. The Web Service Client Security Extensions page opens.
    3. In the Service References section, select your Web service reference.
    4. In the Port Qname bindings section, select the port qualified name binding that you want to use for the Web service reference that you selected.
    5. Expand the Request Generator Configuration section and specify properties for the security mechanism that you are implementing, such as security token, integrity, confidentiality, and timestamp.
    6. Click the WS Binding tab. The Web Services Client Bindings page opens.
    7. In the Service references section, select the Web service reference.
    8. In the Port Qualified Name Binding section, select the port qualified name binding that you want to use for the Web service reference that you selected.
    9. Expand the Security Request Generator Binding Configuration section and specify properties that correspond to the properties that you specified on the WS Extension page, such as token generator, signing information, and encryption information.
    10. Press Ctrl-S to save your changes to the deployment side file ibm-deploy.scaj2ee in the Physical Resources view.
  2. Specify the request consumer properties for the export:
    1. In the Business Integration view, right-click the module that contains your export and select Open Deployment Editor. The module deployment editor opens.
    2. Click the Export WS-Security tab and then click the Extensions tab. The Web Services Security Extensions page opens.
    3. In the Web Service Description Extension section, select the Web service description extension.
    4. In the Port Component Binding section, select the port component binding that you want to use for the Web service description extension that you selected.
    5. Expand the Request Consumer Service Configuration Details section and specify properties that correspond to the properties that you specified on the WS Extensions page for the import, such as required security token, required integrity, required confidentiality, and timestamp.
    6. Click the Binding Configurations tab. The Web Services Binding Configurations page opens.
    7. In the Port Component Binding section, complete the following steps: (i) In the Web service description binding drop-down list, select the Web service description binding. (ii) In the list of port component bindings, select the port component binding that you want to use for the Web service description binding that you selected.
    8. Expand the Request Consumer Binding Configuration Details section and specify properties that correspond to the properties that you specified on the Extensions page, such as token consumer, signing information, and encryption information.
    9. Press Ctrl-S to save your changes to the deployment side file ibm-deploy.scaj2ee in the Physical Resources view.
  3. Specify the response generator properties for the export:
    1. In the Business Integration view, right-click the module that contains your export and select Open Deployment Editor. The module deployment editor opens.
    2. Click the Export WS-Security tab and then click the Extensions tab. The Web Services Security Extensions page opens.
    3. In the Web Service Description Extension section, select the Web service description extension.
    4. In the Port Component Binding section, select the port component binding that you want to use for the Web service description extension that you selected.
    5. Expand the Response Generator Service Configuration Details section and specify properties for the security mechanism that you are implementing, such as security token, integrity, confidentiality, and timestamp.
    6. Click the Binding Configurations tab. The Web Services Binding Configurations page opens.
    7. In the Port Component Binding section, complete the following steps: (i) In the Web service description binding drop-down list, select the Web service description binding. (ii) In the list of port component bindings, select the port component binding that you want to use for the Web service description binding that you selected.
    8. Expand the Response Generator Binding Configuration Details section and specify properties that correspond to the properties that you specified on the Extensions page, such as token generator, signing information, and encryption information.
    9. Press Ctrl-S to save your changes to the deployment side file ibm-deploy.scaj2ee in the Physical Resources view.
  4. Specify the response consumer properties for the import:
    1. In the Business Integration view, right-click the module that contains your import and select Open Deployment Editor. The module deployment editor opens.
    2. Click the Import WS-Security tab and then click the WS Extension tab. The Web Service Client Security Extensions page opens.
    3. In the Service References section, select your Web service reference.
    4. In the Port Qname bindings section, select the port qualified name binding that you want to use for the Web service reference that you selected.
    5. Expand the Response Consumer Configuration section and specify properties that correspond to the properties that you specified on the Extensions page for the export, such as required security token, required integrity, required confidentiality, and timestamp.
    6. Click the WS Binding tab. The Web Services Client Bindings page opens.
    7. In the Service references section, select the Web service reference.
    8. In the Port Qualified Name Binding section, select the port qualified name binding that you want to use for the Web service reference that you selected.
    9. Expand the Security Response Consumer Binding Configuration section and specify properties that correspond to the properties that you specified on the WS Extension page, such as token consumer, signing information, and encryption information.
    10. Press Ctrl-S to save your changes to the deployment side file ibm-deploy.scaj2ee in the Physical Resources view.
If you later want to reset the deployment side file to its original state, complete the following steps:
  1. Close the module deployment editor.
  2. In the Physical Resources view, right-click the deployment side file ibm-deploy.scaj2ee and select Delete.
  3. In the Physical Resources view or the Business Integration view, click your module to select it.
  4. From the Project menu, select Clean. The Clean? dialog box opens.
  5. Select Clean selected projects and then click OK. When the module has finished rebuilding, you can open the module deployment editor as usual.
When you have finished editing your Web services exports and imports, you can test the content of the deployment side file at run time. For example, you can send events to the Web services exports from a custom client and you can use the integration test client to send messages to a module that contains your Web services imports.
Related concepts
Module deployment properties
WS-Security specification
Related tasks
Opening the module deployment editor
Implementing authentication
Related reference
Module deployment editor

Feedback
(C) Copyright IBM Corporation 2005, 2006. All Rights Reserved.