Openshark Web Services Security
Background:
In preparation for a number of upcoming software releases
featuring XML SOAP Web Services, Openshark has decided to
adopt WS-Security as its default authentication mechanism
for those web service functions that require authentication.
Formats:
Openshark BASIC profile WS-Security authentication will
require the use of a valid SHA1 digest hashed token. This
security token is created with the
- Username: chosen by user
- User token: randomly generated
The first Web Services that require BASIC profile
authentication will be clearly identified with their
respective API and WSDL.
Implementation:
The reference implementation is done with Visual Studio.NET
2003 with Microsoft WSE 1.0 using a SQL 2000 Server back
end. Please contact Openshark for the MAI WS Administration
Kit that is ready to deployable in your Enterprise.
This Kit contains both the back-end database as well as the
Administration web site needed to distribute and maintain
User accounts and tokens. These tokens will be required to
secure your deployment of the forthcoming Openshark Web
Service products (such as the MAI Basic Web Services, MAI
Zoomlets and MAI LF).
Usage and testing:
Openshark maintains a number of demo and test environments
that may require user security tokens for access. Token
generation and maintenance can be conducted at the Openshark
WSE Token
Administration Website. Also please note that the
deployed site referenced above is identical to the MAI WS
Administration Kit referenced above.
Related Links:
Support Links:
- Openshark MAI WS Administration kit support can be
contacted at support@openshark.com
|
