Before you begin
Prior to completing this task, you must complete the following steps:Why and when to perform this task
A security token represents a set of claims that are made by a client. This set of claims might include a name, password, identity, key, certificate, group, privilege, and so on. A security token is embedded in the Simple Object Access Protocol (SOAP) message within the SOAP header. The security token within the SOAP header is propagated from the message sender to the intended message receiver.
Complete the following steps to configure either the client-side bindings for the token generator in step 2 or the server-side bindings for the token generator in step 3:
Steps for this task
MyCallbackHandler(String username, char[] password, java.util.Map properties)
The callback handler implementation obtains the required security token and passes it to the token generator. The token generator inserts the security token in the Web services security header within the SOAP message. Also, the token generator is a plug-in point for the pluggable security token framework. Service providers can provide their own implementation, but the implementation must use the com.ibm.wsspi.wssecurity.token.TokenConsumerComponent interface.
What to do next
Configure the key information if this token generator configuration is for an X.509 security token. For more information, see Configuring key information for the generator binding with an assembly tool.Related concepts
Trust anchor
Related tasks
Configuring the security token in generator security constraints
Configuring key information for the generator binding with an assembly
tool
Configuring the collection certificate store for the generator binding
with an assembly tool