We would like to use the UsernameToken WS-Security standard to implement security in our web services. The only hitch is that we need more than just a username and password...we need a CompanyID, also. Is it possible to create a custom UsernameToken element in the
SOAP headers and still be compliant with the WS-Security standards? I apologize if I have not used the correct terminology...hopefully this makes sense.
We are using
Tomcat 6, Axis2 v1.5 and Rampart. As an example, we would like the header to look something like this:
Thank you,
Justin