Using the module deployment editor, you can edit WS-Security properties
for your Web services exports and imports. The high-level tasks in editing
WS-Security properties are essentially the same regardless of whether you
are securing your exports and imports with authentication, signing, or encryption.
The high-level tasks in editing WS-Security properties are:
- Specifying the request generator properties for the import.
- Specifying the request consumer properties for the export.
- Specifying the response generator properties for the export.
- Specifying the response consumer properties for the import.
These tasks are described in the following steps:
- Specify the request generator properties for the import:
- In the Business Integration view, right-click
the module that contains your import and select Open Deployment
Editor. The module deployment editor opens.
- Click the Import WS-Security tab and
then click the WS Extension tab. The Web Service Client
Security Extensions page opens.
- In the Service References section, select
your Web service reference.
- In the Port Qname bindings section, select
the port qualified name binding that you want to use for the Web service reference
that you selected.
- Expand the Request Generator Configuration section
and specify properties for the security mechanism that you are implementing,
such as security token, integrity, confidentiality, and timestamp.
- Click the WS Binding tab. The Web Services
Client Bindings page opens.
- In the Service references section, select
the Web service reference.
- In the Port Qualified Name Binding section,
select the port qualified name binding that you want to use for the Web service
reference that you selected.
- Expand the Security Request Generator Binding Configuration section
and specify properties that correspond to the properties that you specified
on the WS Extension page, such as token generator,
signing information, and encryption information.
- Press Ctrl-S to save your changes to
the deployment side file ibm-deploy.scaj2ee in the Physical
Resources view.
- Specify the request consumer properties for the export:
- In the Business Integration view, right-click
the module that contains your export and select Open Deployment
Editor. The module deployment editor opens.
- Click the Export WS-Security tab and
then click the Extensions tab. The Web Services Security
Extensions page opens.
- In the Web Service Description Extension section,
select the Web service description extension.
- In the Port Component Binding section,
select the port component binding that you want to use for the Web service
description extension that you selected.
- Expand the Request Consumer Service Configuration
Details section and specify properties that correspond to the
properties that you specified on the WS Extensions page
for the import, such as required security token, required integrity, required
confidentiality, and timestamp.
- Click the Binding Configurations tab.
The Web Services Binding Configurations page opens.
- In the Port Component Binding section,
complete the following steps: (i) In the Web service description
binding drop-down list, select the Web service description binding.
(ii) In the list of port component bindings, select the port component binding
that you want to use for the Web service description binding that you selected.
- Expand the Request Consumer Binding Configuration
Details section and specify properties that correspond to the
properties that you specified on the Extensions page,
such as token consumer, signing information, and encryption information.
- Press Ctrl-S to save your changes to
the deployment side file ibm-deploy.scaj2ee in the Physical
Resources view.
- Specify the response generator properties for the export:
- In the Business Integration view, right-click
the module that contains your export and select Open Deployment
Editor. The module deployment editor opens.
- Click the Export WS-Security tab and
then click the Extensions tab. The Web Services Security
Extensions page opens.
- In the Web Service Description Extension section,
select the Web service description extension.
- In the Port Component Binding section,
select the port component binding that you want to use for the Web service
description extension that you selected.
- Expand the Response Generator Service Configuration
Details section and specify properties for the security mechanism
that you are implementing, such as security token, integrity, confidentiality,
and timestamp.
- Click the Binding Configurations tab.
The Web Services Binding Configurations page opens.
- In the Port Component Binding section,
complete the following steps: (i) In the Web service description
binding drop-down list, select the Web service description binding.
(ii) In the list of port component bindings, select the port component binding
that you want to use for the Web service description binding that you selected.
- Expand the Response Generator Binding Configuration
Details section and specify properties that correspond to the
properties that you specified on the Extensions page,
such as token generator, signing information, and encryption information.
- Press Ctrl-S to save your changes to
the deployment side file ibm-deploy.scaj2ee in the Physical
Resources view.
- Specify the response consumer properties for the import:
- In the Business Integration view, right-click
the module that contains your import and select Open Deployment
Editor. The module deployment editor opens.
- Click the Import WS-Security tab and
then click the WS Extension tab. The Web Service Client
Security Extensions page opens.
- In the Service References section, select
your Web service reference.
- In the Port Qname bindings section, select
the port qualified name binding that you want to use for the Web service reference
that you selected.
- Expand the Response Consumer Configuration section
and specify properties that correspond to the properties that you specified
on the Extensions page for the export, such as required
security token, required integrity, required confidentiality, and timestamp.
- Click the WS Binding tab. The Web Services
Client Bindings page opens.
- In the Service references section, select
the Web service reference.
- In the Port Qualified Name Binding section,
select the port qualified name binding that you want to use for the Web service
reference that you selected.
- Expand the Security Response Consumer Binding Configuration section
and specify properties that correspond to the properties that you specified
on the WS Extension page, such as token consumer, signing
information, and encryption information.
- Press Ctrl-S to save your changes to
the deployment side file ibm-deploy.scaj2ee in the Physical
Resources view.
If you later want to reset the deployment side file to its original
state, complete the following steps:
- Close the module deployment editor.
- In the Physical Resources view, right-click the
deployment side file ibm-deploy.scaj2ee and select Delete.
- In the Physical Resources view or the Business
Integration view, click your module to select it.
- From the Project menu, select Clean.
The Clean? dialog box opens.
- Select Clean selected projects and then click OK.
When the module has finished rebuilding, you can open the module deployment
editor as usual.
When you have finished editing your Web services exports and imports,
you can test the content of the deployment side file at run time. For example,
you can send events to the Web services exports from a custom client and you
can use the integration test client to send messages to a module that contains
your Web services imports.