Hi, We need to secure our web service. We got to know about rampart module to implement. Before looking into any kind of documentation for rampart, We were in impression that we need to do changes on server side and the client will come to know about the security related information through WSDL only.
When we looked into that rampart, It changed our basic perception.Rampart documentation says "when using Rampart with Axis2, it must be engaged at both ends".Why so ?? If my client is Java based then we can engage rampart module on client side. What if our client is .Net client and needs to access the web service? Is it the way it works? Then, How the policy and keys related information will be communicated to client? Is there any other way we can implement WSSecurity in Axis2 ? So that we'll be doing changes on server side and client will need to look into wsdl only. I know I am putting questions marks after each sentence. But I can't help it, this is what I think as of now and expecting you people to throw some light on the issue. Thanks, Sudhir
