Web Services Policy Framework (WS-Policy) is an extensible XML-based framework that extends the configuration of a Web service with domain specific security assertions and specifies the security requirements, expectations, and capabilities of the Web service. In AquaLogic Service Bus, one of the primary uses of WS-Policy is configuring message-level security in proxy services and business services.
AquaLogic Service Bus WS-Policies
AquaLogic Service Bus includes three simple WS-Policy files that you can use to require clients to authorize, digitally encrypt, or digitally sign SOAP messages: Auth.xml, Encrypt.xml, and Sign.xml. BEA recommends that unless you have specific security needs, you use these pre-packaged files as often as possible.
If the AquaLogic Service Bus WS-Policy statements do not meet your security needs, you can write your own WS-Policies (custom WS-Policies), import them to AquaLogic Service Bus, and refer to them from the WSDL. (The AquaLogic Service Bus WS-Policy statements are read-only.)
The following table lists the pages you can access from the Resource Browser and Project Explorer modules. The tasks and help topics associated with each are provided.
Table 10-1 WS-Policy Pages, Tasks, and Help Topics
The Summary of WS-Policiespage lists the custom Web Service Policies (WS-Policies) that you have added to the current AquaLogic Service Bus domain. The AquaLogic Service Bus Console does not display the AquaLogic Service Bus WS-Policies, which are pre-packaged and available to all AquaLogic Service Bus domains. To learn more, see Overview of WS-Policies.
To List and Locate Custom WS-Policies
From the left navigation pane, select WS-Policies from under Resource Browser. The Summary of WS-Policies page is displayed, which displays the following information for each custom WS-Policy. For a more detailed description of the properties, see Viewing and Changing Custom WS-Policies.
Contains a Delete icon. If a business service or proxy service has been configured to use the WS-Policy, contains a Delete icon with a red X to indicate that you cannot delete the WS-Policy.
To search for a custom WS-Policy, enter part or all of the WS-Policy name in the Name field. You can also enter part or all of the WS-Policy’s project name and folder in the Path fields. Then click Search.
To clear the search results and display all WS-Policies, click View All.
The Create a New WS-Policypage allows you to add a custom Web Service Policy (WS-Policy). WS-Policies are used in AquaLogic Service Bus to associate Web service security policy with proxy services and business services. To learn more, see Overview of WS-Policies.
You can either import an XML file that contains your WS-Policy or write the WS-Policy directly in the AquaLogic Service Bus Console.
To Add a Custom WS-Policy
If you have not already done so, from the left navigation pane, under Change Center, click Create to create a new session for making changes to the current configuration. To learn more, see Using the Change Center.
From the left navigation pane, select Project Explorer. The Project View page is displayed.
Select the project to which you want to add the WS-Policy. You can add a WS-Policy directly to the project, or you can add it to a selected folder that resides in the project.
Note:
Click the name of a folder to select it. The Folder View page is displayed.
From the Project View or Folder View page, in the Create Resource field, select WS-Policy from under Interface. The Create a New WS-Policy page is displayed.
In the Resource Name field, enter a unique name for this WS-Policy.
(Optional) In the Resource Description field, enter a description of this WS-Policy.
In the Policy field, do one of the following:
Click Browseto locate and import an XML file that contains your custom WS-Policy.
Enter text for the new WS-Policy.
Copy and paste text from an existing WS-Policy into this field.
Do one of the following:
To save the WS-Policy, click Save. The WS-Policy is created and saved in the current session.
The Project View or Folder View page displays the new WS-Policy.
To disregard changes, click Cancel.
When you have finished making changes to this configuration, from the left navigation pane, click Activate under Change Center. The session ends and the configuration is deployed. Alternatively, click Discard at any time during the session to discard the changes you have made so far in the current session.
The WS-Policy Details page allows you to view and change details of a specific custom Web Service Policy (WS-Policy). The AquaLogic Service Bus Console does not display the AquaLogic Service Bus WS-Policies, which are read-only. To learn more, see Overview of WS-Policies.
Click the WS-Policy name. The WS-Policy Details page displays the following information:
Table 10-3 WS-Policy Details
Property
Description
Resource Name
The name assigned to this WS-Policy
Last Modified By
The user who created this WS-Policy or imported it into the configuration.
Last Modified On
The date and time that the user created this WS-Policy or imported it into the configuration.
References
The number of objects that this WS-Policy references. If such references exist, click the link to view a list of the objects. To learn more, see Viewing References.
Referenced by
The number of objects that reference this WS-Policy. If such references exist, click the link to view a list of the objects. To learn more, see Viewing References.
Description
A description of this WS-Policy, if one exists.
Policy
The text for this WS-Policy.
If you have not already done so, from the left navigation pane, under Change Center, click Create to create a new session or click Edit to enter an existing session to make changes to the current configuration. To learn more, see Using the Change Center.
To make a change to the fields, click Edit. See Adding a Custom WS-Policy for a description of the fields.
Note:
You cannot change the Resource Name field.
Do one of the following:
To update the WS-Policy, click Save. The WS-Policy is updated in the current session.
The Summary of WS-Policies page is displayed.
To disregard changes, click Cancel.
When you have finished making changes to this configuration, from the left navigation pane, click Activate under Change Center. The session ends and the configuration is deployed to run time. Alternatively, click Discard at any time during the session to discard the changes you have made so far in the current session.
The Summary of WS-Policies page allows you to delete custom Web Service Policies (WS-Policies). The AquaLogic Service Bus Console does not display the AquaLogic Service Bus WS-Policies, which are read-only and cannot be deleted. To learn more, see Overview of WS-Policies.
To Delete a WS-Policy
If you have not already done so, from the left navigation pane, under Change Center, click Create to create a new session for making changes to the current configuration. To learn more, see Using the Change Center.
If any business service or proxy service is configured to use the WS-Policy, remove the WS-Policy from the business service or proxy service. You cannot delete a WS-Policy that is used by a business service or proxy service.
In the left navigation pane, select WS-Policies from under Resource Browser. The Summary of WS-Policies page is displayed.
In the Options field of the WS-Policy you want to delete, click the Delete icon.
The WS-Policy is removed from the list.
Note:
If necessary, you can undo the deletion of this resource. To learn more, see Undoing a Task.
The WS-Policy is deleted in the current session.
When you have finished making changes to this configuration, from the left navigation pane, click Activate under Change Center. The session ends and the configuration is deployed to run time. Alternatively, click Discard at any time during the session to discard the changes you have made so far in the current session.