Hello,
I'm just getting into JBoss WS security (and security in general for that matter) and I have some basic questions to get me going in the right direction. The questions are not so much about configuration but more about client/server interaction.
When a client invokes a WS method, how do the user credentials get passed along with the method request?
I have not seen that specified in WSDLs so is that some SOAP magic between the client/server?
The credentials would have to be sent with each ensuing WS method call as well, correct?
I know this is basic stuff but I just need a mental shove here.
Thanks.