The eiConsole Web Service Security Processor Adds Various Web Service Security Headers to Its Received Document
With the Web Service Security Processor, you can add a variety of Web Service Security Headers to a received document. As with all the components of the eiConsole, the user is presented with a graphical interface with easy to configure panels to accomplish this.
The Web Service Security Processor allows four different types of security headers to be added:
1. XML Digital Signature: This is a digital signature using a PGP-style public key and certificate. The user specifies if the SOAP message body should be signed in this way and, if so, the location, type and password for the public keystore file.
2. Timestamp: This adds a timestamp to the SOAP message, generally used to provide a “life” duration for the message.
3. Username Token: This adds a username and password to the SOAP message header, generally used to provide credential-based authentication.
4. SAML Auth: This allows the user to provide SAML-based (Security Assertion Markup Language) authentication for the SOAP message.