WS-Specifications

In this article by Malinda Kaushalye Kapuruge, he demonstrates how WSO2 WSF/PHP can be used to implement a typical business solution.

In this introductory tutorial, Dimuthu Gamage explains how you can use the contract first model, which is also called WSDL mode, to write your Web services and clients using WSO2 WSF/PHP.

When one invokes a Web service, in addition to the correct reply, there can be faults returned due to various errors. This article by Eran Chinthaka explains how to get a glimpse of where the error occurred by looking at the SOAP fault code and fault reason.

WS-Security Policy specification defines a standard way to define how to secure messages exchanged between Web services and clients.  WS-Security policy language can be used to publish security requirements and constrains of a Web service using the WSDL specification. That is, using WS – security policy language, we can drive a Web service security engine to secure out going messages in a certain way and instruct the verification of incoming messages in a standard, defined way. In this article by Nandana Mihindukulasooriya, he looks at main components of the WS–Security Policy Language and how these components can be combined to build a security policy that fulfills security requirements of a Web service.

We all know that it is possible to use the feature known as 'Username tokens' in Apache Rampart/C to "Authenticate" a user. This feature can be used to verify if a user has access to a given system or not. Security requirements of a service does not end there. A system cannot grant carte blanche access blindly to its users. It needs to be more specific on credentials. For example, both Alice and Bob are in the system but only Alice can access my personal details.

This tutorial by Malinda Kaushalye Kapuruge is an extension to his previous tutorial titled "Dummy's guide to WSO2 WSF/C". It is expected that you complete that tutorial before starting with this one. Here, we will discuss how to secure SOAP messages using the WSO2 WSF/C framework.