Apache Axis2, the core of WSO2 Web Services Application Server (WSAS), has been showing exponentially increasing popularity growths. for more details, see my blog post on the exponentially increasing Axis2 popularity.
Saturday, August 30, 2008
Saturday, August 23, 2008
For more details on how WSAS as well as other open source SOA products from WSO2 can fit into your enterprise, see this case study by Asankha Perera who is the Software Architect and Product Manager of WSO2 ESB
Monday, August 18, 2008
- SSL Support
WSO2 WSAS has out of the box SSL support. All you need to do is change the WSAS default SSL certificate with your certificate which you may have purchased from a certificate authority or you can even use a self signed certificate.
- WSAS Security Configuration
WSAS Security Configuration consists of WS–Security Policies for most commonly used transport level and message level security scenarios. These policies are based on security requirements such as Authentication, Integrity, Confidentiality, Non-repudiation, Message Freshness and combinations of them. There are policies which optimize securing multiple messages using WS – Secure conversation and also policies which allow trust brokering through WS-Trust. These default policies can be further tweaked to suit custom scenarios using the built in policy editor.
- User Management and Key Store Management
WSO2 WSAS provides user management features such as adding users, deleting users and changing user passwords through the web administration console. It also allows users to be grouped in to roles. Set of users or roles can be easily associated with a web service for Authentication.
WSO2 WSAS also provides key store / certificate management features. WSAS can handle both JKS and PCKS12 keys stores. Using the WSAS administration console, we can upload key stores, view the content of a key store, import certificates to a key store as trusted certificates, remove certificates from key store and remove certificates from existing key stores.
- WSAS Security Token Service (WSAS STS)
WSO2 WSAS comes with a built in Security Token Service built on top of WS-Trust protocol which can be used to issue SAML tokens. Security Token Services can be used to broker trust between two untrusted parties when both parties have a trust relationship with the Security Token Service. WSAS STS supports all the four bindings defined in the WS – Trust that is Issue binding, Validate binding, Renew binding and Cancel binding.
- WSO2 XKMS (XML Key Management Specification) service
WSO2 WSAS also ships a inbuilt XKMS trust web service. Main objective of XKMS trust web services is processing and management of PKI-based cryptographic keys. This allows web services to delegate the key processing functionality to XKMS service reducing the complexity and making it more manageable.
- WSO2 Mex and WSO2 XFer modules
WSO2 Mex (implementation of WS-MetadataExchange) and WSO2 XFer (WS-Transfer) are two modules that ship with WSO2 WSAS which supports metadata exchange. These modules can be used to exchanges metadata about web services such as policies, WSDLs, schema specially when you want to implement web services federation.
- WSO2 POX (Plain Old XML) security handler
WSO2 WSAS allows RESTful web service invocations to be protected with HTTP Basic Authentication via WSO2 POX security handler. This is integrated with the user management.
Friday, August 15, 2008
Some of them are,
- WSDL2Code generator - Give us your WSDL(online WSDLs are also supported) & we can generate both service & client side Java code for you.
- Java2WSDL (WSDL View) - Generate/View WSDLs from Plain Old Java (POJO) Web services
- WSDL Converter - Still running on WSDL 1.1? convert it to 2.0 using our WSDL Converter
- Try It - Give us the URL of your WSDL & we generate a UI through which you can call the service
- AAR Validator - Validate your Axis Service Archives & services.xml
- MAR Validator - Validate your Module Archives & module.xml
WSO2 WSAS packages a number of popular Apache Web services components. Seamlessly integrating these components in not a trivial task for a Web service developer. WSO2 WSAS takes this burden off the shoulders of the Web service developer and provides a clean and simple interface.
At the core of WSO2 WSAS is the popular Apache Axis2 Web services engine, which has proved to be one of the fastest Java Web service engines. Apache Axis2 has an extensible messaging engine architecture, which enables plugging-in of other quality of service modules (QoS). Apache Addressing, Apache Rampart, Apache Rahas and Apache Sandesha2 are such quality of service modules which are included in WSO2 WSAS. These QoS modules also seamlessly plug-in to Apache Axis2. These QoS modules implement the most popular and widely used WS-* standards; hence they have been prominently shown in the diagram. Needless to mention, security & relaibility are two essential aspects of any enterprise deployment. Rampart & Rahas provide implementations of WS-Security, WS-Trust & WS-SecureConversation. Sandesha2 is an implementation on WS-ReliableMessaging.
Apache AXIOM is the default XML Infoset representation used in WSAS. One of the reasons for the high performance of WSAS is the usage of a pull-based XML object model. Apache Neethi is the WS-Policy framework. In addition, WSO2 WSAS also bundles Apache XMLSchema which provides utilities for XML Schema manipulation, and Apache WSS4J, which contains implementations XML Security specifications as well as useful security utilities.
It is not a JEE application server, rather a platform for developing and deploying Web services, using any standard Java application server out there. WSO2 WSAS is a truly open source product released under Apache License v2.0
The key feature is the management console. You also have the benefit of world class development and production support from WSO2 Inc.
It is battle tested, production hardened and quality guaranteed.
Try it today and experience the power of SOA tooling from WSO2.