GT 4.2.1: C WS Authentication & Authorization


The Web Services portion of GT 4.2.1 uses SOAP over HTTP for communicating messages. C WS A&A implements the WS-Security standard and the WS-SecureConversation specification to provide message protection for SOAP messages. Features include:

  • authentication of the sender
  • encryption of the message
  • integrity protection of the message
  • replay attack protection

C WS A&A provide a secure channel by using HTTP over SSL/TLS (HTTPS) for transporting the messages. This security mechanism supports all of the security features provided by SSL/TLS with the addition of support for X.509 Proxy Certificates.

The following guides are available for this component:
Security Key Concepts For important general concepts. [pdf]
Admin Guide For system administrators and those installing, building and deploying GT. You should already have read the Installation Guide and Quickstart. [pdf]
User's Guide This component is a framework and does not typically have end-users; however, this guide includes some helpful configuring and troubleshooting information for end-users. Be sure to also read the GT User Guide for important general information for end-users. [pdf]
Developer's Guide Reference and usage scenarios for developers. [pdf]
Java WS A&A Errors List of errors you may encounter with this component with possible solutions.
Other information available for this component are:
Release Notes What's new with the 4.2.1 release for this component. [pdf]
Public Interface Guide Information for all public interfaces (including APIs, commands, WSDL, etc). Please note this is a subset of information in the Developer's Guide. [pdf]
Quality Profile Information about test coverage reports, etc. [pdf]
Migrating Guide Information for migrating to this version if you were using a previous version of GT. [pdf]
All C WS A&A Guides (PDF only)Includes all C WS A&A guides except Public Interfaces (which is a subset of the Developer's Guide)