Authorization for Web services is enforced by roles. Using the WST development tool you can create new roles, or use predefined roles to establish security at the Web service and Web service operation level. Using different levels of security at the operation level allows you to closely control who has access to your resources.
In this tutorial, you:
Expose a Java class as a Web service
Create an administrator role and a general role and assign those roles to Web service operations/methods
Generate two test clients: one to administer, the other for general business purposes
Run the test clients to verify that the security constraints provided by the roles work as expected
The source files are in the SecuritySample and SecuritySampleClient subdirectories. Instructions for running the tutorial are in the file readme.txt in the SecuritySample directory.
