Invoking outbound services over HTTPS

Use Secure Sockets Layers (SSL) to allow the service integration bus to invoke external web services that include https:// in their addresses.

About this task

There are two ways to set the bus to use SSL with SOAP over HTTPS messages:

By default, each managed endpoint is already configured to use SSL. However you will have to modify the default configuration, for example to add information about the keys and keystores that the external web service uses.

Alternatively, you can use a JAX-RPC handler to set the SSL configuration. You might want to do this because you are upgrading from a previous version of WebSphere® Application Server and your configuration is already set to work in this way, or because you have to target an SSL configuration very precisely; for example to secure each service or each invocation.

To use a JAX-RPC handler to set the SSL configuration, complete the following steps:

Procedure

  1. Start the administrative console.
  2. Create a new Secure Sockets Layer repertoire configuration entry.
  3. Create a new JAX-RPC handler class that sets the property ssl.configName to a value that is the name of the SSL repertoire configuration that you have just created.
    For example:
    public class SSLHandler extends GenericHandler {

    public QName[] getHeaders() {
        return null;
    }

    public boolean handleRequest(MessageContext mc) {
        
        // Insert SSL property
        mc.setProperty("ssl.configName", "myNode/SSLConfig");
        return super.handleRequest(mc);
    }
}
  4. Create a new JAX-RPC handler configuration for the handler.
  5. Create a new JAX-RPC handler list, then select the handler that sets the SSL configuration name property and add it to the handler list.
  6. Go to the administrative console outbound service configuration Service integration -> Buses -> bus_name -> [Services] Outbound Services -> service_name -> Outbound Ports -> port_name, where service and port indicate the outbound port that is to use SSL.
  7. Set the JAX-RPC Handler list property by selecting, from the drop-down list, the handler list that sets the SSL configuration name property.
  8. Save your changes to the master configuration.