1. Business Services Server Reference Guide
  2. Understanding Business Services Server Security for JAX-WS Based Business Services on WAS

Understanding Business Services Server Security for JAX-WS Based Business Services on WAS

Note: This chapter is applicable only if you use a WebSphere Application Server as your business services server.

JAX-WS based EnterpriseOne business services deployed to the WebSphere Application Server (WAS) are secure by default. They are only invoked by supplying valid EnterpriseOne credentials in the WS-Security part of the SOAP header. The Business Services Server uses the JD Edwards EnterpriseOne Login Module as the authentication mechanism for authenticating the credentials in the SOAP Header against the EnterpriseOne Security Server.

Prerequisite

Before you deploy a JAX-WS based business service application to a business services server on WAS, ensure that the business services server on WAS conforms to the EnterpriseOne Minimum Technical Requirements.

See document 745831.1 (JD Edwards EnterpriseOne Minimum Technical Requirements Reference on My Oracle Support.

See https://support.oracle.com/rs?type=doc&id=745831.1

Note: JAX-WS based business services deployed to Oracle WebLogic Server are secure by default, and they use the same security model as JAX-RPC business services, as discussed in Chapter 3.