42 lines
1.6 KiB
HTML
42 lines
1.6 KiB
HTML
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
|
||
|
<html>
|
||
|
<head>
|
||
|
<META http-equiv="Content-Type" content="text/html; charset=utf-8">
|
||
|
<LINK rel="stylesheet" type="text/css" href="../../../rzahg/ic.css">
|
||
|
|
||
|
<title>Response sender</title>
|
||
|
</head>
|
||
|
|
||
|
<BODY>
|
||
|
<!-- Java sync-link -->
|
||
|
<SCRIPT LANGUAGE="Javascript" SRC="../../../rzahg/synch.js" TYPE="text/javascript"></SCRIPT>
|
||
|
|
||
|
<h6><a name="wssecrespsend"></a>Response sender</h6>
|
||
|
|
||
|
<p>The response sender defines the security requirements of the Simple Object
|
||
|
Access Protocol (SOAP) response message. The security handler acts on the
|
||
|
security constraints defined for the response in the IBM extension deployment
|
||
|
descriptors, located in the <tt>ibm-webservices-ext.xmi</tt> file and the
|
||
|
bindings, located in the <tt>ibm-webservices-bnd.xmi</tt> file. The security
|
||
|
handler signs, encrypts, or generates the time stamp for the SOAP response
|
||
|
message before the response is send to the caller.</p>
|
||
|
<dl>
|
||
|
<dt><strong>Integrity constraints (digital signature)</strong></dt>
|
||
|
<dd>You can select which parts of the message are digitally signed.
|
||
|
<ul>
|
||
|
<li>Body</li>
|
||
|
<li>Time stamp</li>
|
||
|
</ul>
|
||
|
</dd>
|
||
|
<dt><strong>Confidentiality (encryption)</strong></dt>
|
||
|
<dd>You can encrypt the body content of the message.</dd>
|
||
|
<dt><strong>Time stamp</strong></dt>
|
||
|
<dd>You can have a time stamp for checking the timeliness of the message.</dd>
|
||
|
</dl>
|
||
|
<p>The security constraints that apply to the SOAP response message must match
|
||
|
the security requirements defined in the response receiver. Otherwise, the
|
||
|
response is rejected by the response receiver (caller).</p>
|
||
|
|
||
|
</body>
|
||
|
</html>
|