Secure WSIF
The steps to be taken to enable the Web Services Invocation Framework (WSIF) to interact with a security manager.
WSIF interacts with a security manager in the following ways:
- WSIF runs in the Java EE security context without modification.
- When WSIF is run under a Java EE container, port implementations can use the security context to pass on security tokens or credentials as necessary.
- WSIF implementations can automatically convert Java EE security context into appropriate context for onward services.
For WSIF to interact effectively with the WAS security manager, complete the following step:
To load the WSDL file, enable the FilePermission attribute in the was.policy file. This permission is required when a WSDL file is referred to using the file:// protocol.
wsif.properties file - Initial contents Web Services Invocation Framework troubleshooting tips