WAS v8.5 > Secure applications > Secure web servicesSecure WSIF
The steps to be taken to enable the Web Services Invocation Framework (WSIF) to interact with a security manager. WSIF interacts with a security manager in the following ways:
- WSIF runs in the Java EE security context without modification.
- When WSIF is run under a Java EE container, port implementations can use the security context to pass on security tokens or credentials as necessary.
- WSIF implementations can automatically convert Java EE security context into appropriate context for onward services.
For WSIF to interact effectively with the WebSphere Application Server security manager, complete the following step:
To load the WSDL file, enable the FilePermission attribute in the was.policy file. This permission is required when a WSDL file is referred to using the file:// protocol.
Reference:
wsif.properties file - Initial contents
Web Services Invocation Framework troubleshooting tips