About Username Tokens (Sun Java System Application Server 9.1 Administration Guide)

Sun Java System Application Server 9.1 Administration Guide

Previous: Assigning Message Security Responsibilities
Next: About Digital Signatures

About Username Tokens

The Application Server uses Username tokens in SOAP messages to establish the authentication identity of the message sender. The recipient of a message containing a Username token (within embedded password) validates that the message sender is authorized to act as the user (identified in the token) by confirming that the sender knows the secret (the password) of the user.

When using a Username token, a valid user database must be configured on the Application Server

Previous: Assigning Message Security Responsibilities
Next: About Digital Signatures