Configure the client for request encryption: Encrypting the message parts

WAS v8.5 > Develop applications > Develop web services - Security (WS-Security) > Configure Web Services Security during application assembly > Configure XML encryption for v5.x web services with an assembly tool
Configure the client for request encryption: Encrypting the message parts

To configure the client for request encryption, specify which message parts to encrypt when configuring the client.

There is an important distinction between v5.x and v6 and later applications. The information in this article supports v5.x applications only used with WebSphere Application Server v6.0.x and later. The information does not apply to v6.0.x and later applications.
Prior to completing these steps, read either of the following topics to familiarize yourself with the WS Extensions tab and the WS Binding tab in the Client Deployment Descriptor Editor within an assembly tool:

Configure the client security bindings using an assembly tool
Configure the security bindings on a server acting as a client

These two tabs are used to configure the Web Services Security extensions and Web Services Security bindings, respectively. To specify which message parts to encrypt when configuring the client for request encryption:

Launch an assembly tool. For more information, see the related information on Assembly Tools.
Switch to the Java EE perspective. Click Window > Open Perspective > J2EE.

Click Application Client Projects > application_name > appClientModule > META-INF.
Right-click the application-client.xml file, select Open with > Deployment descriptor editor.

Click the WS extensions tab, located at the bottom of Client Deployment Descriptor Editor within the assembly tool.

Expand Request sender configuration > Confidentiality. Confidentiality refers to encryption while integrity refers to digital signing. Confidentiality reduces the risk of someone understanding the message flowing across the Internet. With confidentiality specifications, the message is encrypted before it is sent and decrypted when it is received at the correct target. For more information on encrypting , see XML encryption.
Select the parts of the message to encrypt by clicking Add. We can select one of the following parts:

Bodycontent

User data portion of the message

Usernametoken

Basic authentication information, if selected

After we specify which message parts to encrypt, specify which method to use to encrypt the request message. See Configure the client for request encryption: choosing the encryption method for more information.

Related concepts:

XML encryption
Request sender
Development and assembly tools

Related

Configure the client for request encryption: choosing the encryption method
Configure the client security bindings using an assembly tool
Configure the security bindings on a server acting as a client
Configure key locators using an assembly tool
Configure key locators

+
Search Tips | Advanced Search