Configure the client for basic authentication: specifying the method
Basic authentication (BasicAuth) refers to the user ID and password of a valid user in the registry of the target server. BasicAuth information can be collected in many ways, including through an administrative console prompt, a standard in (Stdin) prompt, or specified in the bindings that prevents user interaction.
Important: There is an important distinction between Version 5.x and Version 6.0.x and later applications. The information supports Version 5.x applications only used with WAS v6.0.x and later. The information does not apply to Version 6.0.x and later applications.
For more information on BasicAuth authentication, see: BasicAuth authentication method.
WebSphere Application Server supports nonce (randomly generated token) with BasicAuth authentication. For more information, see Nonce.
Specify BasicAuth as the authentication method:
- Launch an assembly tool. See more information on the assembly tools.
- Switch to the Java EE perspective. Click Window > Open Perspective > J2EE.
- Click Application Client Projects > application_name > appClientModule > META-INF.
- Right-click the application-client.xml file, select Open with > Deployment descriptor editor.
- Click the WS Extensions tab, which is located at the bottom of the deployment descriptor editor within the assembly tool.
- Expand the Request sender configuration > Login configuration section. The only valid login configuration choices for a pure client are BasicAuth and Signature.
- Select BasicAuth to authenticate the client using a user ID and a password. This user ID and password must be specified in the target user registry. The other choice, Signature, attempts to authenticate the client using the certificate used to digitally sign the message.
What to do next
For more information on getting started with the web services client editor within the assembly tool, see either of the following topics:
- Configure the client security bindings using an assembly tool
- Configure the security bindings on a server acting as a client using the administrative console
After specified the BasicAuth authentication method, specify how to collect the authentication information. See Configure the client for basic authentication: collecting the authentication information.
Subtopics
- BasicAuth authentication method
When you use the BasicAuth authentication method, the security token that is generated is a <wsse:UsernameToken> element with <wsse:Username> and <wsse:Password> elements.
Related concepts
Development and assembly tools Nonce, a randomly generated token
Related tasks
Configure the client for basic authentication: collecting the authentication information Configure the client for identity assertion: specifying the method Configure the client for identity assertion: collecting the authentication method Configure the client for LTPA token authentication: specifying LTPA token authentication Configure the client for LTPA token authentication: collecting the authentication method information Configure the client security bindings using an assembly tool Configure the security bindings on a server acting as a client using the administrative console Configure nonce for the application level Configure nonce for the server level Configure nonce for the cell level