Share MTOM and security info with client

We are using contract first approach to create webservices. First we create the WSDL and share it with the clients. From this WSDL they are able to find out which operations to call and what parameters to pass.

But there are certain things which are not there in WSDL. Example, the client need to send username and password in SOAP header is not there in WSDL. Also, for content transfer MTOM is being used is also not there is in WSDL.
In practice, how is this information shared with the clients?
Is there a way to add it to wsdl?

Thank you

Hi!
WS-Policy (http://en.wikipedia.org/wiki/Ws-policy) is what you are looking for, I believe.
Best wishes!

MTOM doesn't add any element in WSDL. For security headers you have to use WS-Policy which I pointed in your earlier post as well.

shivendra tripathi wrote:MTOM doesn't add any element in WSDL. For security headers you have to use WS-Policy which I pointed in your earlier post as well.

Thank you.

If MTOM does not add anything to the WSDL then how can it be intimated to the client that MTOM is enabled at the server side and they can transfer content using MTOM.

Thank you

You are correct to intimate the client it's necessary to have MTOM policy in WSDL. You can have look to following links for more details.

http://blogs.sun.com/sujit/entry/mtom_soap_with_attachment_in
http://www.w3.org/TR/soap12-mtom-policy/