WAS v8.5 > Secure applications > Secure web services > Secure web services > Administer Web Services SecurityConfigure custom properties to secure web services
We can configure name-value pairs of data, where the name is a property key and the value is a string value used to set internal system configuration properties. Defining a new property enables you to configure a setting beyond that which is available through options in the dmgr console.
The Web Services Security custom properties topic provides the following information about each custom property:
- Provides a detailed description of the property
- States the type of data needed to set the property
- Provides a list of possible values
- Lists the default value
Custom properties set for the default consumer or default generator bindings take precedence over general custom properties set as additional properties. However, custom bindings take precedence over default bindings.
The following steps explain how to set custom properties to secure Web services:
- Set custom properties for JAX-RPC applications. We can set custom properties to secure Web services for JAX-RPC applications in multiple locations within the dmgr console. We can set these custom properties for the default consumer, default generator, or both bindings. Also, we can set custom properties as general additional properties. Collectively, the default consumer bindings, the default generator bindings, and the additional properties are referred to as the default bindings.
- Custom bindings
- Expand Applications > Application Types.
- Click WebSphere enterprise applications > application_name.
- Under Modules, click Manage Modules > module_name.
- Under Web Services Security Properties, click Web services: Server security bindings or Web services: Client security bindings > Edit custom.
- Default consumer bindings
- Expand Servers > Server types.
- Click WebSphere applications servers > server_name.
- Under Security, click JAX-WS and JAX-RPC security runtime.
- Under JAX-RPC Default Consumer Bindings, click Properties.
- Default generator bindings
- Expand Servers > Server types.
- Click WebSphere applications servers > server_name.
- Under Security, click JAX-WS and JAX-RPC security runtime.
- Under JAX-RPC Default Generator Bindings, click Properties.
- Additional properties
- Expand Servers > Server types.
- Click WebSphere applications servers > server_name.
- Under Security, click JAX-WS and JAX-RPC security runtime.
- Under Custom properties, click Custom properties.
Order of precedence for custom properties with JAX-RPC applications: Custom properties set in the WS-Security extension and custom bindings take precedence over custom properties set in the default bindings. Custom properties set in the WS-Security bindings take precedence over custom properties set in the WS-Security extension. Custom properties set in the generator or sender and consumer or receiver bindings take precedence over custom properties set in the additional properties.
- Set custom properties for JAX-WS applications. We can set custom properties to secure web services for JAX-WS applications in multiple locations within the dmgr console. We can set these custom properties in the custom bindings for an application, in the WS-Security default bindings, or for inbound and outbound messages.
- Custom bindings for an application
- Expand Services > Service clients or Services > Service providers.
- Click service_name > binding_name.
- Click WS-Security.
- Under the Main message security policy bindings heading, click Custom properties.
- WS-Security default bindings
- Expand Services > Policy sets .
- Click General provider policy set bindings or General client policy set bindings > binding_name > WS-Security.
- Under Main Message Security Policy Bindings, click Custom properties.
- Inbound and outbound custom properties
- Expand Services > Policy sets.
- Click Default policy set bindings.
- Under the Policy heading, click WS-Security.
- Under the Main message security policy bindings heading, click Custom properties.
For more information, see the Inbound and outbound custom properties topic.
Alternatively, we can set these properties as parameters or inbound binding properties for the JAX-WS application using wsadmin scripting. The following WS-Security policy type property names are used in the setBinding function:
- application.parameters
- application.securityinboundbindingconfig.properties
- application.securityoutboundbindingconfig.properties
Custom properties for policy set bindings can not be set using the Web Services Security API. The custom properties must be set using the dmgr console.
Subtopics
- Web services security custom properties
We can configure name-value pairs of data, where the name is a property key and the value is a string value used to set internal system configuration properties. Defining a new property enables you to configure a setting beyond that which is available through options in the dmgr console.- Web services security generic security token login module custom properties
When you configure a generic security token login module, we can configure name-value pairs of data, where the name is a property key and the value is a string value used to set internal system configuration properties. We can use these configuration properties, along with the options provided in the dmgr console, to control how the token is generated or consumed.- Web services security SAML token custom properties
When you configure a web services security SAML token, we can configure name-value pairs of data, where the name is a property key and the value is a string value used to set internal system configuration properties. We can use these configuration properties, along with the options provided in the dmgr console, to control how the SAML token is generated or consumed.