Configuration GuidesPolicy Server Configuration GuideResponses and Response GroupsConfigure Responses for WS‑Security Header ProductionConfigure a WS‑Security Response › Variables for Handling WS‑Security Headers

Previous Topic: Variables for Encrypting/Decrypting WS‑Security Messages

Next Topic: TXM_WSSEC_MUST_UNDERSTAND Response Variable Effect Detail
Variables for Handling WS‑Security Headers

The following table describes response variable name/value pairs that can be configured to tell the SOA Agent how to handle the mustUnderstand attribute in WS‑Security request , or to remove the mustUnderstand or the entire security token from messages passed to the recipient web service.

Variable Name

Variable Value

Attribute Type

Meaning

TXM_WSSEC_MUST_UNDERSTAND

(optional)
  • True
  • False
  • Not set (default)

Static

Determines how the SOA Agent behaves with respect to the mustUnderstand attribute when consuming and producing messages.

For specifics of the behavior of this variable when consuming and producing headers, see TXM_WSSEC_MUST_UNDERSTAND Response Variable Effect Detail.

TXM_WSSEC_REMOVE

(optional)
  • True
  • False (default)

Static

Determines whether the SOA Agent removes WS-Security headers from messages.

  • If True, the WS-Security header for a specified actor/role (or the default header if no actor/role is defined) is removed from the inbound document. This setting effectively scrubs credentials.
  • (Default) If False, no change is made to the request document.

More information:

TXM_WSSEC_MUST_UNDERSTAND Response Variable Effect Detail