I want to create a webservice (using WSDL first or Contract first approach) which is secured in three ways:
1. It requires a username/password for authentication.
2. It uses XML Signature for integrity.
3. It uses XML Encryption for confidentiality.
I started reading the WS-Security, but I am unable to find an example (using Apache CXF or JBoss 6 webservices) which shows me how to accomplish the above starting with a WSDL (Contract first approach) in a systematic step by step approach.
Will appreciate any help or pointers in this regard.