SOAMANAGER - WS security option
i'm working with SAP web service technology. I build twe web service:
- 1 WS consumer starting from WSDL file
- 1 WS provider starting from WSDL file
Both services are up and running.
From security point of view i have a tricky requirement: both the WS must respect these features:
- transport channel security: http (not SSL required) with http login (userID and password)
- message security: WS secuirty is needed (WS username token: WS user and and password via soap header)
For the first point: no problem, i've been able to set up http login as requested.
After a lot of trials (changing security setting in SOAMANAGER and in ABAP WS definition - see enclosed pictures) , i didn't find out how to set up the WS security in addition to the http login security setting. It seems that the two security setting cannot be activated together.
For example, for the consumer WS, i'd like to obtain a message like the one attached to the message (sample.xml) where the WS credentials are passed via SOAP header. On the other hand, for the WS provider, i'd like to configure the security setting in order SAP can handle the WS security authentication check.
Thanks in advance