+

Search Tips   |   Advanced Search

Invoking outbound services over HTTPS

Use Secure Sockets Layers (SSL) to allow the service integration bus to invoke external web services that include https:// in their addresses.

There are two ways to set the bus to use SSL with SOAP over HTTPS messages:

By default, each managed endpoint is already configured to use SSL. However we will have to modify the default configuration, for example to add information about the keys and keystores that the external web service uses.

Alternatively, we can use a JAX-RPC handler to set the SSL configuration. We might want to do this because we are upgrading from a previous version of WebSphere Application Server and the configuration is already set to work in this way, or because we have to target an SSL configuration very precisely; for example to secure each service or each invocation.

To configure SSL certificate and key management for a managed endpoint, see Create a Secure Sockets Layer configuration.

To use a JAX-RPC handler to set the SSL configuration, complete the following steps:


Tasks

  1. Start the administrative console.
  2. Create a new Secure Sockets Layer repertoire configuration entry.

  3. Create a new JAX-RPC handler class that sets the property ssl.configName to a value that is the name of the SSL repertoire configuration that we have just created. For example:
    public class SSLHandler extends GenericHandler {
    
        public QName[] getHeaders() {
            return null;
        }
    
        public boolean handleRequest(MessageContext mc) {
            
            // Insert SSL property
            mc.setProperty("ssl.configName", "myNode/SSLConfig");
            return super.handleRequest(mc);
        }
    }
    
  4. Create a new JAX-RPC handler configuration for the handler.
  5. Create a new JAX-RPC handler list, then select the handler that sets the SSL configuration name property and add it to the handler list.

  6. Use the instructions given in Modifying an existing outbound service configuration to navigate to the administrative console page Service integration -> Buses -> bus_name -> [Services] Outbound Services -> service_name -> Outbound Ports -> port_name, where service and port indicate the outbound port that is to use SSL.

  7. Set the JAX-RPC Handler list property by selecting, from the drop-down list, the handler list that sets the SSL configuration name property.

  8. Save changes to the master configuration.

  • Bus-enabled web services troubleshooting tips
  • Overriding the default security configuration between bus-enabled web services and a secure bus
  • Configure secure transmission of SOAP messages using WS-Security
  • Work with password-protected components