ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzatz_5.4.0.1/51/webserv/wssecrespsend.htm

42 lines
1.6 KiB
HTML
Raw Normal View History

2024-04-02 14:02:31 +00:00
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<META http-equiv="Content-Type" content="text/html; charset=utf-8">
<LINK rel="stylesheet" type="text/css" href="../../../rzahg/ic.css">
<title>Response sender</title>
</head>
<BODY>
<!-- Java sync-link -->
<SCRIPT LANGUAGE="Javascript" SRC="../../../rzahg/synch.js" TYPE="text/javascript"></SCRIPT>
<h6><a name="wssecrespsend"></a>Response sender</h6>
<p>The response sender defines the security requirements of the Simple Object
Access Protocol (SOAP) response message. The security handler acts on the
security constraints defined for the response in the IBM extension deployment
descriptors, located in the <tt>ibm-webservices-ext.xmi</tt> file and the
bindings, located in the <tt>ibm-webservices-bnd.xmi</tt> file. The security
handler signs, encrypts, or generates the time stamp for the SOAP response
message before the response is send to the caller.</p>
<dl>
<dt><strong>Integrity constraints (digital signature)</strong></dt>
<dd>You can select which parts of the message are digitally signed.
<ul>
<li>Body</li>
<li>Time stamp</li>
</ul>
</dd>
<dt><strong>Confidentiality (encryption)</strong></dt>
<dd>You can encrypt the body content of the message.</dd>
<dt><strong>Time stamp</strong></dt>
<dd>You can have a time stamp for checking the timeliness of the message.</dd>
</dl>
<p>The security constraints that apply to the SOAP response message must match
the security requirements defined in the response receiver. Otherwise, the
response is rejected by the response receiver (caller).</p>
</body>
</html>