Hi, I'm developing a jbossws server application that must get Username and Password tokens in header in order to invoke another application with those credentials. A sample request made to my application seems like this. <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:mod="http://myapp.com/ws/model"> <soapenv:Header> <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-... <wsse:UsernameToken> <wsse:Username>name</wsse:Username> <wsse:Password>pass</wsse:Password> </wsse:UsernameToken> </wsse:Security> </soapenv:Header> <soapenv:Body> <mod:request> a </mod:request> </soapenv:Body> </soapenv:Envelope> I have read thread http://www.jboss.com/index.html?module=bb&op=viewtopic&t=131719 but it does not explain exactly what I need. I can not use login-config.xml to store allowed users, because it could be any, that is, my application does not perform authentication at all. I only need to get username and password values to propagate them. Maybe with additional information I could provide to you we could find a suitable solution. Thank you very much! View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152773#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...