How do I use WS-Security with EJB3?
For one of our projects, I need to be able to call a web service that uses WS-Security, i.e. the SOAP request must be signed with an X.509 certificate. I was doing some tests to call a web service using the WebServiceRef annotation and I can call the web service without WS-Security.
So my question is, how can I activate and / or configure WS-Security when using the WebServiceRef annotation?
Best regards, Stefan Lecho.
+1
user42630
source
to share
1 answer
If it's still relevant, take a look at WSIT and in particular its WS-Security implementation is described here . Basically you just need to use @WebServiceRef as you normally would, provide wsit-client.xml and specify the correct <Policy> node.
You may find them useful:
- Implementing WS-Security with Public Key Certificates for Metro Based Web Services
- Configuring key stores and trust networks
+1
candiru
source
to share