Part reference configuration settings
Use this page to specify a reference to the message parts for signature and encryption that are defined in the deployment descriptors.
To view this WebSphere® Application Server administrative console page on the server level for signing information, complete the following steps:
- Click Servers > Application Servers > server_name.
- Under Security, click Web services: Default bindings for Web services security.
- Under Default generator bindings or Default consumer bindings, click Signing information > signing_information_name.
- Under Additional properties, click Part references.
- Click New to create a part reference or click the name of an existing configuration to modify its settings.
To view this WAS administrative console page on the application level for signing information, complete the following steps. Part references are available through the administrative console using Version 6.x applications only.
- Click Applications > Enterprise applications > application_name.
- Under Related items, click EJB modules or Web modules > URI_name.
- Under Additional properties, you can access the signing information for the following bindings:
- For the Request generator (sender) binding, click Web services: Client security bindings. Under Request generator (sending) binding, click Edit custom.
- For Response consumer (receiver) binding, click Web services: Client security bindings. Under Response consumer (receiver) binding, click Edit custom.
- For the Request consumer (receiver) binding, click Web services: Server security bindings. Under Request consumer (receiver) binding, click Edit custom.
- For the Response generator (sender) binding, click Web services: Server security bindings. Under Response generator (sender) binding, click Edit custom.
- Under Required properties, click Signing information > signing_information_name.
- Under Additional properties, click Part references.
- Click New to create a part reference or click the name of an existing configuration to modify its settings.
You must specify a part name and select a part reference before specifying additional properties. Before specifying the digest method properties that are accessible under Additional properties, specify a digest method algorithm on this panel. If you specify none and click Digest method, an error message is displayed.
Related reference
Transforms configuration settings
Part name
Specifies the name that is assigned to the part reference configuration.
Part reference
Specifies the name of the <integrity> or <requiredIntegrity> element for the signed part of the message or it specifies the name of the <confidentiality> or <requiredConfidentiality> element for the encrypted part of the message in the deployment descriptor.
The part names that are defined in the deployment descriptor are listed as options in this field. This field is displayed for the binding configuration on the application level only.
Digest method algorithm
Specifies the algorithm URI of the digest method that is used for the signed part that is specified by the part reference.
WAS provides the following predefined algorithm URI: http://www.w3.org/2000/09/xmldsig#sha1. If you want to specify a custom algorithm, configure the custom algorithm in the Algorithm URI panel before setting the digest method algorithm.
To access the Algorithm URI panel, complete the following steps for the server level:
The specified algorithms are listed as options for this field.
- Click Servers > Application servers > server_name.
- Under Security, click Web services: Default bindings for Web services security.
- Under Additional properties, click Algorithm mappings > algorithm_factory_engine_class_name > Algorithm URI > New.
When you specify the Algorithm URI, you also must specify an algorithm type. To have the algorithm display as a selection in the Digest method algorithm field on the Part reference panel, select Digest value calculation (Message digest) as the algorithm type.