Skip to main content

By clicking Submit, you agree to the developerWorks terms of use.

The first time you sign into developerWorks, a profile is created for you. Select information in your developerWorks profile is displayed to the public, but you may edit the information at any time. Your first name, last name (unless you choose to hide them), and display name will accompany the content that you post.

All information submitted is secure.

  • Close [x]

The first time you sign in to developerWorks, a profile is created for you, so you need to choose a display name. Your display name accompanies the content you post on developerworks.

Please choose a display name between 3-31 characters. Your display name must be unique in the developerWorks community and should not be your email address for privacy reasons.

By clicking Submit, you agree to the developerWorks terms of use.

All information submitted is secure.

  • Close [x]

Select a language:

  • Close [x]
  • Close [x]

Build Web services in the WebSphere Application Server Toolkit Version 6.1, Part 2: Configure Web services security

Tam T. Dinh (tamdinh@us.ibm.com), WebSphere System Verification Tester, IBM
Tam Dinh has been working on WebSphere system testing for more than five years and has been working on Web services since it was introduced in IBM WebSphere V5.0.2. She has been also been working on WS-Security for the last two years. Tam has worked closely with the IBM WebSphere Application Server Toolkit development team and has developed and configured Web services-based applications. She is the co-author of multiple TechDocs for the Solution Scenario Profiles database (SSPD).

Summary:  Sharing personal or confidential information over Web services requires security. The IBM® WebSphere® Application Server Toolkit Version 6.1 WS-Security wizards make it easy to create a basic security framework to protect messages exchanged in a Web services environment. In this tutorial, the second in a two-part series, learn how to configure Web services security for a service or client service using WS-Security wizards.

View more content in this series

Date:  05 Apr 2007
Level:  Intermediate
PDF:  A4 and Letter (1652 KB | 33 pages)Get Adobe® Reader®

Activity:  5663 views
Comments:  

Before you start

About this tutorial

Part 1 of this two-part tutorial series showed you how to use wizards in the WebSphere Application Server Toolkit (hereafter referred to as Application Server Toolkit) to create top-down Web services, generate the corresponding Web services client, and deploy the Web services application to WebSphere Application Server (hereafter referred to as Application Server). Part 2 provides step-by-step instructions about using the wizards in Application Server Toolkit to configure Web services security for a Java™ API for an XML-based RPC (JAX-RPC) Web service and for a JAX-RPC Web service client.

Prerequisites

You should have a basic knowledge of Web services, Web services security, and Application Server V6.1. Completion of Part 1 is highly recommended.

System requirements

To work through this tutorial, you need a Microsoft® Windows® machine with a minimum of 1GB of RAM, with the following software installed:

Test the sample application

You can download the sample application client and server .ear files for this tutorial from the Download section near the end of this tutorial. To test the sample application, follow these steps:

  1. Enable Security in WebSphere Application Server by navigating to Security > Secure administration, applications, and infrastructure in the WebSphere admin console.
  2. Install WServiceApp_src.ear on Application Server.
  3. Select the Show me all installation options and parameters radio button on the first installation page.
  4. Keep all default values during the installation, except for step 7 (Map security roles to users or groups). In this panel, map a user to myRole by selecting myRole, clicking the Look up users button, then clicking Search and selecting a user from the list. This user has to exist in the user registry.
  5. Save all the changes, and restart the Application Server.
  6. Create a directory to run the client (c:\myClient), and copy WSClient_src.ear to this directory.
  7. Go to the directory that you want to run the client from and issue the command WAS_HOME\bin\launchClient WSClient_src.ear -url=http://host:port /MyWService/services/AnnuityService -doauto.

    Notes: Change WAS_HOME to the location of the installed Application Server V6.1, and change host:port so that host is your machine host name, and port is the WC_defaulthost port, which can be found in the Application Server profile SystemOut.log, such as TCP Channel TCP_2 is listening on host * (IPv4) port 9080. (For example, \WebSphere\AppServer\bin\launchClient WSClient_src.ear -url=http:// localhost:9080/MyWService/services/AnnuityService -doauto.)

  8. You'll see a login prompt. Log in with the user and password that you used to map to myRole in step 4, above.

1 of 9 | Next

Comments

Back to top

Close [x]

Help: Update or add to My dW interests

What's this?

This little timesaver lets you update your My developerWorks profile with just one click! The general subject of this content (AIX and UNIX, Information Management, Lotus, Rational, Tivoli, WebSphere, Java, Linux, Open source, SOA and Web services, Web development, or XML) will be added to the interests section of your profile, if it's not there already. You only need to be logged in to My developerWorks.

And what's the point of adding your interests to your profile? That's how you find other users with the same interests as yours, and see what they're reading and contributing to the community. Your interests also help us recommend relevant developerWorks content to you.

View your My developerWorks profile

Return from help

Close [x]

Help: Remove from My dW interests

What's this?

Removing this interest does not alter your profile, but rather removes this piece of content from a list of all content for which you've indicated interest. In a future enhancement to My developerWorks, you'll be able to see a record of that content.

View your My developerWorks profile

Return from help

static.content.url=http://www.ibm.com/developerworks/js/artrating/
SITE_ID=1
Zone=SOA and Web services
ArticleID=207098
TutorialTitle=Build Web services in the WebSphere Application Server Toolkit Version 6.1, Part 2: Configure Web services security
publish-date=04052007
author1-email=tamdinh@us.ibm.com
author1-email-cc=

Table of contents

1 of 9 | Next

Next steps from IBM

Tags

Help
Use the search field to find all types of content in My developerWorks with that tag.

Use the slider bar to see more or fewer tags.

Popular tags shows the top tags for this particular content zone (for example, Java technology, Linux, WebSphere).

My tags shows your tags for this particular content zone (for example, Java technology, Linux, WebSphere).

Use the search field to find all types of content in My developerWorks with that tag. Popular tags shows the top tags for this particular content zone (for example, Java technology, Linux, WebSphere). My tags shows your tags for this particular content zone (for example, Java technology, Linux, WebSphere).

 

Dig deeper into SOA and Web services on developerWorks

Try IBM PureSystems. No charge.

IBM PureSystems on a kaleideoscope background

Experience today!

Get started with the cloud-based trial and pattern development kit.

Share this page:

  • Close [x]

Follow developerWorks:

  • Close [x]