The integration framework includes support for J2EE authentication
and for component-level authorization.
Authentication security
You can configure J2EE authentication security for JMS
queues, EJB, HTTP, and web services. You can also configure authentication
security for remote integration APIs and for the Java handler classes
for outbound routing.
Authorization security
You can configure authorization security at application-level,
object-level, or at the level of a method defined in a standard service.
After user authentication completes, the integration framework checks
that the user has been granted the authority to send messages to the
target application, object, or method.