developerWorks

AIX and UNIX
Information Mgmt
	New to Information Mgmt
	Products
	How to buy
	Downloads
	Technical library
	Training
	Support
	Services
	Forums & community
	News
	Events
Lotus
Rational
Tivoli
WebSphere

Architecture
Java™ technology
Linux
Multicore acceleration
Open source
SOA and Web services
Web development
XML

About dW
Submit content
Feedback

Related links
	ISV resources
	alphaWorks (emerging technologies)
	IBM Academic Initiative
	IBM Student Portal
	IBM Virtual Innovation Center (Bus. Partners)
	IBM Redbooks
	IBM Press books
	IBM communities

Local sites
	developerWorks 中国
	developerWorks Japan
	developerWorks 한국
	developerWorks Россия
	developerWorks Brasil
	developerWorks en español
	developerWorks Việt Nam

developerWorks > Information Management | Java technology | WebSphere | SOA and Web services >

Data Web Services on WebSphere Application Server, Part 3: Leverage DB2 trusted context support using Data Studio

Use IBM Data Web Services together with the DB2 trusted context feature

Level: Intermediate

Michael Schenker (mschenk@us.ibm.com), Software Engineer, IBM
Namrata Misra (nammisra@us.ibm.com), Software Engineer, IBM

22 May 2008


	Register now or sign in using your IBM ID and password.

Common problems in J2EE applications that access databases occur around end-to-end authentication and authorization, as well as the end-to-end audit path. The concepts of data sources and connection pools provide many advantages, but they can also lead to security breaches. This vulnerability happens because, after the security layer of the application server has been passed, all requests are usually mapped to one common user ID to access the database. A new feature called trusted context, available in DB2® 9.5, allows users to leverage the benefits of connection pooling without sacrificing security. This tutorial describes how you can use that feature with a Data Web Services Web application.

Objectives

Get a brief introduction to the DB2 trusted context feature
Set up WebSphere Application Server to use DB2 trusted context
Learn how DB2 trusted context works together with WebSphere Application Server and the Data Web Services application by turning on the JCC trace in WebSphere Application Server

Prerequisites

This tutorial is written for database programmers who are familiar with IBM Data Studio and know how to create a database connection, a data development project, and SQL scripts or stored procedures. Before you start this tutorial, you should also complete "IBM Data Studio: Get started with Data Web Services" (developerWorks, Nov 2007) and "Enable transport-level security" (developerWorks, May 2008). Basic knowledge of WebSphere Application Server and J2EE are recommended.

System requirements

To run the examples in this tutorial, you must install IBM Data Studio 1.1.2 and WebSphere Application Server Version 6.1 (Fix Pack 11). You must also install DB2 for z/OS Version 9 or DB2 for Linux, UNIX, and Windows Version 9.5 and create the sample database.

Formats

html, pdf

Tutorial overview

In this tutorial, you will learn how to leverage the trusted context feature of DB2 to provide end-to-end authorization and authentication for your Web services. This tutorial takes approximately one hour to complete. Two more tutorials will follow to discuss Web service security and Web service atomic transactions.

Share this....

Digg this story

del.icio.us

Slashdot it!

Back to top

Document options

Document options requiring JavaScript are not displayed

My developerWorks needs you!

Connect to your technical community

More in this series:
Data Web Services on WebSphere Application Server