Category

BPM & System Integration

Category

In the last week of August the 7th annual Oracle PaaS Summer Camp (formerly known as the Oracle Fusion Middleware Summer Camp) took place „“ once again close to the beautiful city of Lisbon. More than 100 participants attended the event involving six different tracks covering the full range of PaaS offerings by Oracle. This year a group of four people from Opitz Consulting attended the event; these are the tracks we visited: API Cloud…

WS-Security Username Token Profile is a simple authentication scheme for SOAP-webservices using username an password sent in the requests‘ WS-Security headers. The password is hashed using a salt and a timestamp (password digest) to prevent replay attacks. It is specified in this document. As this does not involve any message encryption it should not be used without transport encryption.
In this post I will show how I configured this for a webservice to be deployed on a recent Weblogic Server (12.2.1.2).