1 Overview of OWSM Interoperability
Each chapter includes the following information:
-
Overview of each security stack
-
An explanation of the usage scenarios
For details regarding limitations and known problems, see Web Services in Release Notes for Oracle Fusion Middleware Infrastructure.
For definitions of unfamiliar terms found in this and other books, see the Glossary.
This Chapter includes the following sections:
1.1 About OWSM Policies
OWSM policies must be attached to web service endpoints. Each policy consists of one or more assertions, defined at the domain-level, that define the security requirements. A set of predefined policies and assertions are provided out-of-the-box.
For more details about the predefined policies, see "Predefined Policies" in Securing Web Services and Managing Policies with Oracle Web Services Manager.
For information about configuring and attaching policies, see "Securing Web Services" and "Attaching Policies" in Securing Web Services and Managing Policies with Oracle Web Services Manager.
1.2 OWSM Interoperability Scenarios
You can review the different scenarios for interoperability between OWSM and the various components in the security environment.
Table 1-1 describes the most common OWSM interoperability scenarios.
Table 1-1 Common OWSM Interoperability Scenarios
Security Stack | OWSM Policies | Interoperability Scenario |
---|---|---|
OWSM 10g |
|
"Anonymous Authentication with Message Protection (WS-Security 1.0)" |
OWSM 10g |
|
|
OWSM 10g |
|
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.0)" |
OWSM 10g |
|
"Mutual Authentication with Message Protection (WS-Security 1.0)" |
OWSM 10g |
|
|
OWSM 10g |
|
|
OC4J 10g |
|
"Anonymous Authentication with Message Protection for OC4J 10g Client (WS-Security 1.0)" |
OC4J 10g |
|
"Username Token with Message Protection for OC4J 10g Client (WS-Security 1.0)" |
OC4J 10g |
|
"SAML Token (Sender Vouches) with Message Protection for OC4J 10g Client (WS-Security 1.0)" |
OC4J 10g |
|
"Mutual Authentication with Message Protection for OC4J 10g Client (WS-Security 1.0)" |
OC4J 10g |
OR
|
|
OC4J 10g |
o OR
|
"SAML Token (Sender Vouches) over SSL for OC4J 10g Client (WS-Security 1.0)" |
Oracle WebLogic Server 12c |
|
"Username Token with Message Protection for Oracle WebLogic Server (WS-Security 1.1)" |
Oracle WebLogic Server 12c |
|
"Username Token with Message Protection for Oracle WebLogic Server (WS-Security 1.1) and MTOM" |
Oracle WebLogic Server 12c |
|
"Username Token with Message Protection Oracle WebLogic Server (WS-Security 1.0)" |
Oracle WebLogic Server 12c |
|
|
Oracle WebLogic Server 12c |
|
"Implementing Username Token Over SSL for Oracle WebLogic Server with MTOM" |
Oracle WebLogic Server 12c |
|
"SAML Token (Sender Vouches) over SSL for Oracle WebLogic Server" |
Oracle WebLogic Server 12c |
|
"Implementing SAML Token (Sender Vouches) Over SSL for Oracle WebLogic Server with MTOM" |
Oracle WebLogic Server 12c |
|
"SAML Token 2.0 (Sender Vouches) Message Protection for Oracle WebLogic Server (WS-Security 1.1)" |
Oracle WebLogic Server 12c |
|
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.1) for Oracle WebLogic Server" |
Oracle WebLogic Server 12c |
|
|
Oracle WebLogic Server 12c |
|
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.0) for Oracle WebLogic Server" |
Oracle WebLogic Server 12c |
|
"Mutual Authentication with Message Protection (WS-Security 1.0) for Oracle WebLogic Server" |
Oracle WebLogic Server 12c |
|
"Mutual Authentication with Message Protection (WS-Security 1.1) for Oracle WebLogic Server" |
Microsoft WCF/.NET 3.5 |
|
"Implementing a Message Transmission Optimization Mechanism for Microsoft WCF/.NET 3.5 Client" |
Microsoft WCF/.NET 3.5 |
OR
|
|
Microsoft WCF/.NET 3.5 |
OR
|
"Implementing a Username Token Over SSL for Microsoft WCF/.NET 3.5 Client" |
Microsoft WCF/.NET 3.5 |
|
|
Microsoft WCF/.NET 3.5 |
|
"Implementing a Kerberos with Message Protection for Microsoft WCF/.NET 3.5 Client" |
Microsoft WCF/.NET 3.5 |
|
"Implementing a Kerberos with Message Protection Using Derived Keys for Microsoft WCF/.NET 3.5 Client" |
Microsoft WCF/.NET 3.5 |
Policy created with |
"Implementing a Kerberos with SPNEGO Negotiation for Microsoft WCF/.NET 3.5 Client" |
Microsoft WCF/.NET 3.5 |
Policy created with |
|
Oracle Service Bus 10g |
|
|
Oracle Service Bus 10g |
|
|
Oracle Service Bus 10g |
|
"Implementing a SAML or Username Token Over SSL for Oracle Service Bus 10g Client" |
Oracle Service Bus 10g |
|
|
Axis 1.4 and WSS4J 1.5.8 |
|
"Implementing a Username Token with Message Protection (WS-Security 1.0) for Axis and WSS4J Client" |
Axis 1.4 and WSS4J 1.5.8 |
|
"Implementing a SAML Token with Message Protection (WS-Security 1.0) for Axis and WSS4J Client" |
Axis 1.4 and WSS4J 1.5.8 |
|
"Implementing a Username Token over SSL for Axis and WSS4J Client" |
Axis 1.4 and WSS4J 1.5.8 |
|
"Implementing a SAML Token (Sender Vouches) over SSL for Axis and WSS4J Client" |
GlassFish Enterprise Server |
|