Administration Console Online Help

Previous Next Open TOC in new window
Content starts here

Domains: Web Service Security: Token Handler: Configuration

Configuration Options     Related Tasks     Related Topics

Use this page to configure a token handler associated with a Web Service security configuration. In particular, you can change the classname that implements the token handler, change the type of token, and add or delete properties of the token handler.

A common reason for creating a token handler for a Web Service security configuration is to specify that a client invoking a message-secured Web Service uses an X.509 certificate to establish their identity.

Configuration Options

Name Description

The name of this token handler.

MBean Attribute:

Changes take effect after you redeploy the module or restart the server.

Class Name

The fully qualified name of the class that implements a particular credential provider or token handler.

MBean Attribute:

Token Type

Specifies the type of token used for the particular credential provider or token handler.

WebLogic Server supports, by default, three types of tokens: X.509, UsernameToken, and SAML, as specified by the following WS-Security specifications:

  • Web Services Security: Username Token Profile

  • Web Services Security: X.509 Token Profile

  • Web Services Security: SAML Token Profile

To specify one of these out-of-the-box types, use these values respectively: "ut", "x509", or "saml".

MBean Attribute:

Handling Order

Specifies the order in which the token handlers execute on a given token.

If you do not specify an order, it is determined by the order in which you added the token handlers.

MBean Attribute:


The user-specified name of this MBean instance.

This name is included as one of the key properties in the MBean's

MBean Attribute:

Changes take effect after you redeploy the module or restart the server.


Specifies the value of the property.

If the property is encrypted, then attribute is null and one should use the EncryptedValue attribute to get the decrypted value.

MBean Attribute:

Is Encrypted

Specifies whether the property should be encrypted.

By default, the value of a property is not encrypted and anyone using the Administration Console can view the value of the property. If this attribute is set to true, then the value of the property on the Administration Console will be set to all asterisks.

MBean Attribute:

Related Tasks

Related Topics

Back to Top