Network Deployment (Distributed operating systems), v8.0 > Develop and deploying applications > Develop web services - Security (WS-Security) > Configure Web Services Security during application assembly > Configure XML encryption for v5.x web services with an assembly tool
Configure the server for request decryption: decrypting the message parts
Use the WS Extensions tab and the WS Binding configurations tab to specify which parts of the request message must be decrypted by the server.
There is an important distinction between v5.x and v6 and later applications. The information in this article supports v5.x applications only that are used with WAS Version 6.0.x and later. The information does not apply to Version 6.0.x and later applications.
Complete this task to specify which parts of the request message must be decrypted by the server. We must know which parts of the request message the client encrypts because the server must decrypt the same message parts. Prior to completing these steps, read either of the following topics to become familiar with the WS Extensions tab and the WS Binding configurations tab:
- Configure the server security bindings using an assembly tool
- Configure the server security bindings
These two tabs are used to configure the Web Services Security extensions and Web Services Security bindings, respectively. Complete the following steps to configure the request receiver extensions:
Procedure
- Launch an assembly tool. See the related information on Assembly Tools.
- Switch to the Java EE perspective. Click Window > Open Perspective > J2EE.
- Click EJB Projects > application_name > ejbModule > META_INF.
- Right-click the webservices.xml file, and click Open with > Web services editor.
- Click the Extensions tab, which is located at the bottom of the web services editor within the assembly tool.
- Expand the Request receiver service configuration details > Required confidentiality section.
- Select the parts of the message to decrypt. The message parts selected for the request decryption on the server must match the message parts selected for the message encryption on the client. Click Add and select either of the following message parts:
- bodycontent
- The user data section of the message.
- usernametoken
- This token is the basic authentication information.
What to do next
After you specify which parts of the request message to decrypt, specify the method to use decrypt the message. See Configure the server for request decryption: choosing the decryption method for more information.
XML encryption
Assembly tools
Request receiver
Configure the server for request decryption: choosing the decryption method
Configure key locators using an assembly tool
Configure key locators
Configure the server security bindings using an assembly tool
Configure the server security bindings