To check a SOAP message for a particular WS-Policy layout,
complete the following fields:
Name:
Enter an intuitive name for this filter (for example, Check SOAP
Request for Lax Layout ).
Actor:
Enter the name of the SOAP Actor/Role where the security tokens are
present.
Select Required Layout Type:
Select the required layout from the following WS-Policy options:
-
Strict:
Select this option to check that a SOAP message adheres to the
WS-Policy strict layout rules. For more information, see the
WS-Policy specification.
-
Lax:
Select this option if you want to ensure that the security tokens
in the SOAP header have been inserted according to the Lax WS-Policy
layout rules. The WS-Policy Lax rules are effectively identical to
those stipulated by the SOAP Message Security specification.
-
LaxTimestampFirst:
This layout option ensures that the WS-Policy Lax rules have
been followed, but also checks to make sure that the WS-Utility
Timestamp is the first security token in the WS-Security header.
-
LaxTimestampLast:
This option ensures that the WS-Utility Timestamp is the last
security token in the WS-Security header and that all other Lax
layout rules have been followed.
WS-Security Version:
The layout rules for WS-Security versions 1.0 and 1.1 are slightly
different. Select the version of the layout rules that you wish to
apply to SOAP requests. For details on the differences between these
versions, see the WS-Security specifications.
|