wss-security header processing.

James3 · January 16, 2019, 5:15pm

I created a webservice/soap mapping for ws-stack that requires a username token in the ws-security header.
I created a PasswordCallbackHandler to validate the incoming credentials.
It works in terms of validation, but then ws-stack passes those credentials to the backend rpc server. I do not want that to happen. The rpc/broker credentials are supplied in the .xmm/.aar file, but they are being overwritten by the incoming ws-credentials. Is there any way to prevent that from happening?

Rolf_Bahlke · January 18, 2019, 1:15pm

Please try the following:

In the AAR Editor in Designer go to the tab EntireX Settings.
And then:

Set „User Name Token“ to disable.
Save and deploy again

James3 · January 28, 2019, 3:22pm

Thank you Rolf. That worked!
James.

Topic		Replies	Views
.xmm mapping passwords webMethods , Mainframe-Integration , EntireX	5	5531	April 2, 2021
xmlrpcserver outbound ws-security. webMethods , Mainframe-Integration , EntireX	2	596	April 2, 2021
XMLRPCSERVER, Mutual TLS webMethods , Mainframe-Integration , EntireX	12	1056	April 2, 2021
Web Services Stack - Kenel Security webMethods , Mainframe-Integration , EntireX	3	4714	April 2, 2021
Userid/Password authentication in SOAP Header webMethods , API-Management , SOA	4	2912	April 2, 2021

wss-security header processing.

Related topics