THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
WS-Security
WS-Security is one of the soap policies that can be enable on SOAP endpoints.
To configure such a policy, you need to add the following tag to you endpoint definition:
| Code Block | ||
|---|---|---|
| ||
<http:endpoint xmlns:soap="http://servicemix.apache.org/soap/1.0" ...>
<http:policies>
<soap:ws-security ... />
</http:policies>
</http:endpoint>
|
The full schema can be found hereThis page currently contains a few example showing how to configure WS-Security.
Inbound UsernameToken
| Code Block | ||
|---|---|---|
| ||
<!-- Secured endpoint using ws-sec authentication -->
<http:endpoint service="ex:receiver"
endpoint="http-wssec"
targetService="ex:receiver"
role="consumer"
locationURI="http://localhost:8192/WSSec/"
defaultMep="http://www.w3.org/2004/08/wsdl/in-only"
soap="true">
<http:policies>
<soap:ws-addressing />
<!-- Enable ws-sec with UsernameToken -->
<soap:ws-security receiveAction="UsernameToken" />
</http:policies>
</http:endpoint>
|
...