SBM Orchestration Guide → Orchestration Procedures → Using the Step Palette → Using the Service Step → Using SOAP Headers to Enable WS-Security
WS-Security ensures the identify, integrity, and security of a SOAP message. It is applied at the Web service layer, as opposed to basic access authentication, which is applied at the HTTP transport layer. SOAP messages are typically exchanged over HTTP, so you can use basic access authentication for them. However, WS-Security provides an extra level of security for messages that take a complicated path or that use a non-HTTP transport mechanism.
WS-Security elements are embedded within the SOAP message <env:Header> element. These take the form of one or more <wss:security> elements that contain the appropriate security information as required by the particular service deployment.
Although it is possible to declare WS-Security elements in a Web service WSDL file, this is not typically done. Instead, WS-Policy is used to document the security that a particular service requires. SBM does not currently support WS-Policy. However, it is possible to use data mapping in SBM Composer to create SOAP header elements.
To do this, there must be at least one declared header in the Web service WSDL. Any header will do; It does not have to be a WS-Security header. Because headers are not typically present in Web service WSDLs, you probably need to make a local copy of the WSDL and then edit it to add a placeholder header.
To enable WS-Security:
<?xml version="1.0" encoding="UTF-8" standalone="no"?> <wsdl:definitions xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/" →xmlns:tns="http://www.example.org/SOAPHeaderExample_1/" →xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/" xmlns:xsd= →"http://www.w3.org/2001/XMLSchema" name="SOAPHeaderExample_1" →targetNamespace="http://www.example.org/SOAPHeaderExample_1/"> <wsdl:types> <xsd:schema targetNamespace="http://www.example.org/ →SOAPHeaderExample_1/"> <xsd:element name="NewOperation"> <xsd:complexType> <xsd:sequence> <xsd:element name="in" type="xsd:string"/> </xsd:sequence> </xsd:complexType> </xsd:element> <xsd:element name="NewOperationResponse"> <xsd:complexType> <xsd:sequence> <xsd:element name="out" type="xsd:string"/> </xsd:sequence> </xsd:complexType> </xsd:element> <xsd:element name="Placeholder" type="xsd:string"/> </xsd:schema> </wsdl:types> <wsdl:message name="NewOperationRequest"> <wsdl:part element="tns:NewOperation" name="parameters"/> </wsdl:message> <wsdl:message name="NewOperationResponse"> <wsdl:part element="tns:NewOperationResponse" name="parameters"/> </wsdl:message> <wsdl:message name="Header"> <wsdl:part element="tns:Placeholder" name="placeholder"/> </wsdl:message> <wsdl:portType name="SOAPHeaderExample_1"> <wsdl:operation name="NewOperation"> <wsdl:input message="tns:NewOperationRequest"/> <wsdl:output message="tns:NewOperationResponse"/> </wsdl:operation> </wsdl:portType> <wsdl:binding name="SOAPHeaderExample_1SOAP" type="tns: →SOAPHeaderExample_1"> <soap:binding style="document" transport="http://schemas.xmlsoap.org/ →soap/http"/> <wsdl:operation name="NewOperation"> <soap:operation soapAction="http://www.example.org/ →SOAPHeaderExample_1/NewOperation"/> <wsdl:input> <soap:body use="literal"/> <soap:header message="tns:Header" part="placeholder" →use="literal" /> </wsdl:input> <wsdl:output> <soap:body use="literal"/> </wsdl:output> </wsdl:operation> </wsdl:binding> <wsdl:service name="SOAPHeaderExample_1"> <wsdl:port binding="tns:SOAPHeaderExample_1SOAP" name= →"SOAPHeaderExample_1SOAP"> <soap:address location="http://www.example.org/"/> </wsdl:port> </wsdl:service> </wsdl:definitions>
<wsse:Security> <wsse:UsernameToken> <wsse:Username>theUsername</wsse:Username> <wsse:Password>thePassword</wsse:Password> </wsse:UsernameToken> </wsse:Security>
<env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/ →envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema"> <env:Header> <ns9:Security xmlns:bpws="http://schemas.xmlsoap.org/ws/2003/03/ →business-process/" xmlns:defaultNS="http://SOAPHeaderTest1" xmlns:defaultNS1="http://www.example.org/SOAPHeaderExample_1/" xmlns:ns9="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss- →wssecurity-secext-1.0.xsd" xmlns:tns="http://SOAPHeaderTest1"> <ns9:Username>theUsername</ns9:Username> <ns9:Password>thePassword</ns9:Password> </ns9:Security> </env:Header> <env:Body> <defaultNS1:NewOperation xmlns:bpws="http://schemas.xmlsoap.org/ws/2003/03/business-process/" xmlns:defaultNS="http://www.example.org/SOAPHeaderExample_1/" xmlns:defaultNS1="http://www.example.org/SOAPHeaderExample_1/" xmlns:ns8="http://www.example.org/SOAPHeaderExample_1/"> <in xmlns:SOAP-ENC="http://schemas.xmlsoap.org/soap/encoding/" xmlns:ns1="http://www.eclipse.org/alf/schema/EventBase/1" xmlns:s="http://www.eclipse.org/alf/schema/EventBase/1" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">hello</in> </defaultNS1:NewOperation> </env:Body> </env:Envelope>
Copyright © 2007–2015 Serena Software, Inc. All rights reserved.