WAS v8.5 > Secure applications > Secure web services > Define and managing secure policy set bindings

Configure SCA web service binding to use SSL

Use this task to specify abstract intents in the Service Component Architecture (SCA) composite file to achieve a quality of service for secure connection using SSL.

Determine whether the application requires the use of SSL. Intents and policy sets can be used to configure web service bindings to achieve a secure connection.

  1. Configure administrative and application security for the server.

    To secure the service so that it only accepts secure requests, administrative and application security must be enabled for the server.

  2. Configure the service binding to require an SSL connection by requiring the confidentiality.transport intent.
    <service name="AccountService">   <binding.ws 
         requires="confidentiality.transport"
         ... /> </service>

    An SSL connection is also required if an attached web service policy set includes the SSLTransport policy type. For information about attaching policy sets, refer to "Mapping abstract intents and managing policy sets."

    Services in OASIS composites that are wired using an SCA target must require the confidentiality.transport intent.

  3. 3. Configure the reference binding to require an SSL connection by requiring the confidentiality.transport intent.
    <reference name="AccountService">   <binding.ws 
         requires="confidentiality.transport"
         ... /> </reference>

    An SSL connection is also required if an attached web service policy set includes the SSLTransport policy type. For information about attaching policy sets, refer to "Mapping abstract intents and managing policy sets."

    If you are not using an SCA target to wire the reference to a service, the confidentiality.transport intent simply enforces the endpoint address specified in the composite file or WSDL file uses the https protocol. If we are using an SCA target, the confidentiality.transport intent causes SCA to use the SSL port of the target service. Services in OASIS composites that are wired using an SCA target must require the confidentiality.transport intent.


Results

When you finish this task, we have configured web service bindings to use SSL.

We can proceed to configuring other application specific bindings for the policy sets.


Related concepts:

WSHTTPS default policy set


Related


Define and managing policy set bindings
Secure JAX-WS web services using message-level security
Secure web services applications at the transport level
Attaching a policy set to a service artifact
Map SCA abstract intents and managing policy sets
Create application specific bindings for policy set attachment
Configure web services client bindings
Configure default Web Services Security bindings
Configure the HTTP transport policy
Configure the SCA web service binding


+

Search Tips   |   Advanced Search