The Application Server ships with an example WSS application, xms
, which is located in the directory install_dir\samples\webservices\security\ejb\apps\xms\
.
The objective of this sample application is to demonstrate how a web service can be secured with WSS. The web service in the xms
example is a simple web service implemented using a J2EE EJB endpoint and a web service endpoint implemented using a servlet. In this example, a service endpoint interface is defined with one operation, sayHello
, which takes a string then sends a response with Hello
prefixed to the given string.
This example shows how to use message security for web services at the Application Server level and at the application level. The WSS message security mechanisms implement message-level authentication (e.g., XML digital signature and encryption) of SOAP web services invocations using the X.509 and username/password profiles of the OASIS WS-Security standard.
For information on compiling, packaging, and running the application, refer to the Securing Applications chapter of the Developers’ Guide. There is a link to this chapter in "Further Information".