Configure the client for request encryption: Encrypting the message parts

[Version 5 only]

 

Configure the client for request encryption: Encrypting the message parts

Important distinction between Version 5.x and Version 6 applications

Note: The information in this article supports version 5.x applications only that are used with WebSphere Application Server Version 6. The information does not apply to version 6 applications.

Prior to completing these steps, read either of the following topics to familiarize yourself with the WS Extensions tab and the WS Binding tab in the Client Deployment Descriptor Editor within an assembly tool:

These two tabs are used to configure the Web services security extensions and Web services security bindings, respectively.

Complete the following steps to specify which message parts to encrypt when configuring the client for request encryption:

  1. Launch an assembly tool. For more information on the assembly tools, see Assembly tools.

  2. Open the J2EE perspective by clicking Window > Open perspective > Other > J2EE .

  3. Click Application Client Projects > application_name > appClientModule > META-INF .

  4. Right-click the application-client.xml file, select Open with > Deployment descriptor editor .

  5. Click the WS extensions tab, which is located at the bottom of Client Deployment Descriptor Editor within the assembly tool.

  6. Expand Request sender configuration > Confidentiality . Confidentiality refers to encryption while integrity refers to digital signing. Confidentiality reduces the risk of someone understanding the message flowing across the Internet. With confidentiality specifications, the message is encrypted before it is sent and decrypted when it is received at the correct target. For more information on encrypting , see XML encryption.

  7. Select the parts of the message that you want to encrypt by clicking Add . You can select one of the following parts:

    Bodycontent

    User data portion of the message

    Usernametoken

    Basic authentication information, if selected

 

What to do next

After you specify which message parts to encrypt, specify which method to use to encrypt the request message. See Configuring the client for request encryption: choosing the encryption method for more information.

Related concepts
Request sender

Related tasks
Configuring the client for request encryption: choosing the encryption method
Configuring the client security bindings using an assembly tool
Configuring the security bindings on a server acting as a client using the administrative console
Configuring key locators using an assembly tool
Configuring key locators using the administrative console


Searchable topic ID: twbs_confclreqencryptmsg