I want to provide security to JAX Ws Webservice , so i am planning to use Message Level Security .
We are using Weblogic 10 as our server .
So as per the Weblogic docs , it says that for Message Level security :
WebLogic Server includes pre-packaged WS-Policy files that you can use for configuring message-level security and reliable messaging, including the following. These files are static and you cannot change them:
Does it mean that we can use any one of the following xml files for providing security ??
If so , Please let me know what is best for configuring my Web service for security ??
First of all, are you familiar with WS-Policy?
My guess is that the files you mention contain one or more policies and, from the names, I conclude that they are focused on message reliability, that is, ensuring that each message is delivered to its destination, resending messages if necessary.
WS-Policy policies can be included in WSDLs, either directly in the WSDL or imported. The following is an example of an inline WS-Policy declaration declaring a policy that consists of:
- WS-Reliable messaging (required).
- Ordering of messages (required).
- The use of WS-Addressing (optional).
If you want to use WS-Policy, you need to write at least one policy similar to the above and include it in your WSDL of the web service.