+

Search Tips   |   Advanced Search

Configure SCA web service binding to use SSL

Use this task to specify abstract intents in the Service Component Architecture (SCA) composite file to achieve a quality of service for secure connection using SSL.

Determine whether the application requires the use of SSL.

Intents and policy sets can be used to configure web service bindings to achieve a secure connection.

  1. Configure administrative and application security for the server.

    To secure the service so that it only accepts secure requests, administrative and application security must be enabled for the server.

  2. Configure the service binding to require an SSL connection by requiring the confidentiality.transport intent. 
    <service name="AccountService">
  <binding.ws       requires="confidentiality.transport"
     ... />
</service>

    An SSL connection is also required if an attached web service policy set includes the SSLTransport policy type. For information about attaching policy sets, refer to "Mapping abstract intents and managing policy sets."

    Services in OASIS composites that are wired using an SCA target must require the confidentiality.transport intent.

  3. 3. Configure the reference binding to require an SSL connection by requiring the confidentiality.transport intent. 
    <reference name="AccountService">
  <binding.ws       requires="confidentiality.transport"
     ... />
</reference>

    An SSL connection is also required if an attached web service policy set includes the SSLTransport policy type. For information about attaching policy sets, refer to "Mapping abstract intents and managing policy sets."

    If we are not using an SCA target to wire the reference to a service, the confidentiality.transport intent simply enforces that the endpoint address specified in the composite file or WSDL file uses the https protocol. For an SCA target, the confidentiality.transport intent causes SCA to use the SSL port of the target service. Services in OASIS composites that are wired using an SCA target must require the confidentiality.transport intent.


Results

When you finish this task, we have configured web service bindings to use SSL.


What to do next

We can proceed to configuring other application specific bindings for the policy sets.


Related concepts

  • WSHTTPS default policy set


    Related tasks

  • Define and manage policy set bindings
  • Secure JAX-WS web services using message-level security
  • Secure web services applications at the transport level
  • Attaching a policy set to a service artifact
  • Mapping SCA abstract intents and managing policy sets
  • Create application specific bindings for policy set attachment
  • Configure web services client bindings
  • Configure default Web Services Security bindings
  • Configure the HTTP transport policy
  • Configure the SCA web service binding