Before you start
Learn what to expect from this tutorial, and how to get the most out of it.
IBM Data Studio makes it easy to service-enable your SQL statements or stored procedures to help fully integrate your data server into a Service-Oriented Architecture (SOA). This series introduces basic concepts, and shows you how to get started with implementing Data Web Services using Data Studio and WebSphere Application Server. IBM WebSphere Application Server is one of the possible target platforms for Data Web Services. This series of tutorials is designed to encourage you to unleash the full power of Data Web Services by using some of the enhanced features WebSphere Application Server provides related to security, performance, and reliability.
The first tutorial in the series showed you how to create a Web service that selects, updates, and inserts data in a DB2 database. In addition, it covered some troubleshooting and monitoring information.
Now in Part 2, you will learn how to enable Data Web Services for transport-level security. Future tutorials in the series will cover DB2 trusted context, Web service security, and Web service atomic transactions.
Security plays an important role in an SOA. When exposing data by using services, you must ensure that only clients with sufficient permissions may execute a service operation. Invocation of Data Web Service operations can be enabled for security using a J2EE security scheme, which is transport-level security. It requires application server-specific extensions inside the Data Web Services application. The following sections describe how to secure a Data Web Service application at the HTTP transport protocol layer and how to hook it into WebSphere's security framework.
Transport-level encryption is not covered in this tutorial. WebSphere Application Server provides several SSL capabilities. A default WebSphere Application Server installation comes with an HTTPS port (default port is 9443). WebSphere Application Server also provides capabilities to setup and configure several SSL features, such as certificates.
In this tutorial, you will learn how to configure transport-level security in WebSphere Application Server, how to apply a transport-level security setting to a Data Web Service application, and how to test transport-level security with a Data Web Service application.
This tutorial is written for database programmers who are familiar with IBM Data Studio and know how to create a database connection, Data Development Project, SQL scripts, or stored procedures, and have completed "IBM Data Studio: Get started with Data Web Services tutorial." Basic knowledge of WebSphere Application Server and J2EE are recommended.
To run the examples in this tutorial, you need the following:
- IBM Data Studio V1.1
- WebSphere Application Server version 6.0.2 (fixpack 9) or higher or Version 6.1.x.
- DB2® for Linux®, UNIX®, or Windows® Version 8 or 9 with the sample database.