4-8 Programming Advanced Features of JAX-WS Web Services for Oracle WebLogic Server

4.4 Roadmap for Securing Reliable Web Services

Table 4–4 provides best practices for securing reliable Web services using WS-SecureConversation. These guidelines should be used in conjunction with the guidelines provided in Section 4.2, Roadmap for Developing Reliable Web Services. Table 4–3 Roadmap for Accessing Reliable Web Services from Behind a Firewall MakeConnection Best Practice Description Coordinate the MakeConnection polling interval with the reliable messaging base retransmission interval. The polling interval you set for MakeConnection transport sets the lower limit for the amount of time it takes for reliable messaging protocol messages to make the round trip between the client and service. If you set the reliable messaging base retransmission interval to a value near to the MakeConnection polling interval, it will be unlikely that a reliable messaging request will be received by the Web service, and the accompanying RM acknowledgement sent for that request at best one MakeConnection polling interval later before the reliable messaging runtime attempts to retransmit the request. Setting the reliable messaging base retransmission interval to a value that is too low results in unnecessary retransmissions for requests, and potentially a cascading load on the service side as it attempts to process redundant incoming requests and MakeConnection poll messages to retrieve the responses from those requests. Oracle recommends setting the base retransmission interval to a value that is at least two times the MakeConnection polling interval. Note : When Web services reliable messaging and MakeConnection are used together, the MakeConnection polling interval value will be adjusted at runtime, if necessary, to ensure that the value is set at least 3 seconds less than the reliable messaging base transmission interval. If the base transmission interval is three seconds or less, the MakeConnection polling interval is set to the value of the base retransmission interval. For more information setting the MakeConnection polling interval and reliable messaging base retransmission interval, see Section 3.6.2.2, Configuring the Polling Interval and Section 5.7.4, Configuring the Base Retransmission Interval , respectively. Table 4–4 Roadmap for Securing Reliable Web Services Best Practice Description Coordinate the WS-SecureConversation lifetime with the reliable messaging base retransmission and acknowledgement intervals. A WS-SecureConversation lifetime that is set to a value near to or less than the reliable messaging base retransmission and acknowledgement intervals may result in the WS-SecureConversation token expiring before the reliable messaging handshake message can be sent to the Web service. For this reason, Oracle recommends setting the WS-SecureConversation lifetime to a value that is at least two times the base retransmission interval. For more information setting the base retransmission interval, see Section 5.7.4, Configuring the Base Retransmission Interval. 5 Using Web Services Reliable Messaging 5-1 5 Using Web Services Reliable Messaging The following sections describe how to use Web Services reliable messaging. ■ Section 5.1, Overview of Web Services Reliable Messaging