Enable security for WSIF
Overview
The Web Services Invocation Framework (WSIF) interacts with a security manager in the following ways:
- WSIF runs in the J2EE security context
without modification.
- When WSIF is run under a J2EE container, port implementations can use
the security context to pass on security tokens or credentials as necessary.
- WSIF implementations can automatically convert J2EE security context into appropriate context for onward services.
For WSIF to interact effectively with the WebSphere Application Server security manager, enable the following permission in the was.policy file: FilePermission to load the WSDL. This permission is required when a WSDL file is referred to using the file:// protocol.
WSIF system management and administration
Maintaining the WSIF properties file
Troubleshooting the Web Services Invocation Framework