You can specify which parts of the response message to
encrypt when configuring the server for response encryption.
Before you begin
Important: There is an important
distinction between Version 5.x and Version 6.0.x and
later applications. The information supports Version 5.x applications
only that are used with WebSphere® Application Server
Version 6.0.x and later. The information does not apply to
Version 6.0.x and later applications.
Prior to completing
these steps, read either of the following topics to become familiar
with the
WS Extensions tab and the
WS Bindings tab in
the Web services editor within an assembly tool:
These two tabs are used to configure the Web Services
Security extensions and the Web Services Security bindings, respectively.
About this task
Complete the following steps to specify which parts of
the response message to encrypt when configuring the server for response
encryption:
Procedure
- Launch an assembly tool.
For more information,
see the related information on Assembly Tools.
- Switch to the Java™ Platform,
Enterprise Edition (Java EE)
perspective. Click Window > Open Perspective > J2EE.
- Click EJB Projects > application_name >
ejbModule > META_INF.
- Right-click the
webservices.xml
file,
select Open with > Web services editor.
-
Click the Extensions tab, which is located at the end of the Web Services Editor within
the assembly tool.
- Expand Response sender service configuration
details > Confidentiality.
Confidentiality
refers to encryption while integrity refers to digital signing. Confidentiality
reduces the risk of someone understanding the message flowing across
the Internet. With confidentiality specifications, the response is
encrypted before it is sent and decrypted when it is received at the
correct target.
- Select the parts of the response that you want to encrypt
by clicking Add and selecting Bodytoken or Usernametoken.
The following information describes the message parts:
- Bodycontent
- User data portion of the message.
- Usernametoken
- Basic authentication information, if selected.
A user name
token does not appear in the response so you do not need to select
this option for the response. If you select this option, make sure
that you also select it for the client response receiver. If you do
not select this option, make sure that you do not select it for the
client response receiver.
What to do next
After you specify which message parts to encrypt, you must
specify which method to use message encryption. See the task for choosing
the encryption method when configuring the server for response encryption.