ActiveVOS Designer User’s Guide
Select this policy assertion as described in Adding Policy Assertions.
To refer to this policy rather than explicitly adding it, see User-Defined Policy Assertion.
This policy describes the HTTP credentials required for access to a service.
Inbound authentication is for messages received for My Role services and for replies from invoked Partner Role services. Outbound authentication is for replies from My Role services and messages sent to invoked Partner Role services.
Set the following parameters:
|
Outbound Authentication Policy Username |
Name of the user authorized to access the service |
|
Password |
Password for the authorized user |
|
Preemptive HTTP Credentials |
Preemptive authentication sends basic authentication credentials without being challenged by the remote host. Care must be taken to ensure that this option is only used to communicate over secure channels to prevent unnecessary disclosure of user credentials |
|
Send wsse:UsernameToken in Header |
If checked, credentials are sent as a OASIS WS-Security
UsernameToken element in the SOAP Header. To include a Nonce with
the UsernameToken, add a |
|
Use Cleartext Password |
Select this option to store the password in Clear text. The password is visible and readable in the PDD file. |
|
Inbound Authentication Policy Require UsernameToken when receiving messages |
Select this to require authentication on messages received by a My Role or Partner Role service |
Example
<wsp:Policy xmlns:abp="http://schemas.active-endpoints.com/ws/2005/12/policy"
xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
<abp:Authentication direction="both">
<abp:User>authorized_user</abp:User>
<abp:Password>xzuSGNslrMeKzL4uPZQ8qg==</abp:Password>
<abp:HTTPPreemptive/>
<abp:UsernameToken/>
<abp:Nonce/>
</abp:Authentication>
</wsp:Policy>
Copyright (c) 2004-2008 Active Endpoints, Inc.