Configure the client for basic authentication: specifying the method
Basic authentication (BasicAuth) refers to the user ID and password of a valid user in the registry of the target server. BasicAuth information can be collected in many ways, including through an console prompt, a standard in (Stdin) prompt, or specified in the bindings that prevents user interaction.
There is an important distinction between Version 5.x and V6.0.x and later applications. The information in this article supports V5.x applications only that are used with WAS V6.0.x and later. The information does not apply to V6.0.x and later applications.
For more information on BasicAuth authentication, see: BasicAuth authentication method.
Overview
WAS supports nonce (randomly generated token) with BasicAuth authentication. For more information, see Nonce.
Complete the following steps to specify BasicAuth as the authentication method:
Procedure
- Launch an assembly tool. For more information on the assembly tools, see Assembly tools.
- Switch to the J2EE perspective. Click Window > Open Perspective > J2EE.
- Click Application Client Projects > application > appClientModule > META-INF.
- Right-click the application-client.xml file, select Open with > Deployment descriptor editor.
- Click the WS Extensions tab, which is located at the bottom of the deployment descriptor editor within the assembly tool.
- Expand the Request sender configuration > Login configuration section. The only valid login configuration choices for a pure client are BasicAuth and Signature.
- Select BasicAuth to authenticate the client using a user ID and a password. This user ID and password must be specified in the target user registry. The other choice, Signature, attempts to authenticate the client using the certificate used to digitally sign the message.
What to do next
For more information on getting started with the Web services client editor within the assembly tool, see either of the following topics:
- Configure the client security bindings using an assembly tool
- Configure the security bindings on a server acting as a client using the console
After you specify the BasicAuth authentication method, specify how to collect the authentication information. See Configure the client for basic authentication: collecting the authentication information.
BasicAuth authentication method
Related concepts
Nonce, a randomly generated token
Related tasks
Configure the client for basic authentication: collecting the authentication information
Configure the client for identity assertion: specifying the method
Configure the client for identity assertion: collecting the authentication method
Configure the client for LTPA token authentication: specifying LTPA token authentication
Configure the client for LTPA token authentication: collecting the authentication method information
Configure the client security bindings using an assembly tool
Configure the security bindings on a server acting as a client using the console
Configure nonce for the application level
Configure nonce for the server level
Configure nonce for the cell level
Securing Web services for V5.x applications using basic authentication