User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - PROGRAMMER GUIDE TO SERVLETS

271

272

273

274

275

276

277

278

279

280

Chapter 15: User Authentication, SOAP Digital Signature and XML Encryption for Web Services (SOAP)

15-4

• Request transmission setting: destination role (actor) setting

Specify the URI of the intermediary for the SOAP message to perform some action on that

message.

If a URI is not specified, the action will be directed at the ultimate destination of the SOAP message.

• Request transmission setting: mustUnderstand

Specify whether processing of the header elements of the SOAP message by its recipient is

mandatory or optional.

The default is “No need for processing.”

Notes

• If you use the Web Service Configuration Edit Tool to configure SOAP Headers with an appended

user name and password, the user name and password that are programmed by an application are

automatically appended to the SOAP header of each SOAP message.

• The Windows Start menu may look slightly different depending on the system in use.

User Authentication for SOAP Messages

Implementing an Application that Performs User Authentication on SOAP Messages

An application that performs user authentication on the user name and password appended to each

SOAP message is implemented by editing Web service information. There is no need to edit the

application program.

Setting User Information

User authentication for SOAP messages involves the use of a certain scheme of user information

management at single sign-on. The following information items need to be set to use this scheme:

• Repository server environment setup

• Authentication server environment setup

• Business server environment setup.

Repository Server Environment Setup

The repository server is a server on which user name, password and user role information is managed.

For details about how to set up a repository server environment, refer to “Setting up a repository server”

in the “Environment Setup (SSO Administrator)” section of the Single Sign-on Guide.

User authentication for SOAP messages does not use the access control information stored on the

repository server. The user information that is stored on the repository server must have the user’s role

name (ssoRoleName) set in it.

Authentication Server Environment Setup

The authentication server authenticates users by comparing the user name and password appended to

each SOAP message against the user information stored on the repository server. For details about

how to set up an authentication server environment, refer to “Setting up an authentication server” in the

“Environment Setup (SSO Administrator)” section of the Single Sign-on Guide.