Identifying Sender and Receiver IBC Reference on Provider Side
Context
By default, the sender of a message passes the sender and receiver IBC reference in the SOAP header, unless it is suppressed by the corresponding setting in the domain system or logical port. Since it may not always be secure for the provider to rely on this sender and receiver information sent by the consumer, the receiver can define one of three methods to identify the sender IBC reference and the receiver IBC reference at runtime:
-
Identifying sender and receiver by authentication
The communication framework determines the sender and receiver reliably on the basis of the authentication of the Web service user and the invoked Web service.
-
Identifying sender by authentication, receiver by SOAP header
The communication framework determines the sender reliably on the basis of the authentication of the Web service user and the invoked Web service. The receiver IBC reference is taken from the SOAP header sent by the consumer.
-
Identifying sender and receiver by SOAP header
In this case, both the sender IBC reference and the receiver IBC reference are identified by the SOAP header sent by the Web service consumer. This method is easiest as nothing has to be configured; but it is less secure than then the other two methods.
Procedure
Results
You have specified how the sender and receiver IBC references are identified for the specified combination of user and service definition.