 | Level: Introductory Michael Schenker (mschenk@us.ibm.com), Software Engineer, IBM
Namrata Misra (nammisra@us.ibm.com), Software Engineer, IBM
08 May 2008
Part 1 of this series explored the basic
development and deployment steps to use an IBM® Data Web
Service with WebSphere® Application Server. Now you are ready to explore more
advanced topics. This tutorial shows you how to configure the sample Data Web Service application
from Part 1 to use basic HTTP authentication and authorization. Objectives - Configure transport-level security in WebSphere Application Server
- Apply a transport-level security setting to a Data Web Service application
- Test transport-level security with a Data Web Service application
Prerequisites
This tutorial is written for database programmers who are familiar with IBM Data
Studio and know how to create a database connection, Data Development Project, SQL
scripts, or stored procedures, and have completed "IBM Data Studio: Get started with Data Web Services tutorial." Basic knowledge of WebSphere Application Server and J2EE are recommended.
System requirements
To run the examples in this tutorial, you need the following:
Formats html, pdf
Tutorial overview
Security plays an important role in an SOA. When
exposing data by using services, you must ensure that only clients with sufficient permissions may execute
a service operation. Invocation of Data Web Service operations can be enabled for security using a J2EE security
scheme, which is transport-level security. It requires application server-specific extensions inside the Data Web Services application.
This tutorial describes how to secure a Data Web Service application at the HTTP transport protocol layer and how
to hook it into WebSphere's security framework.
| | | |
