Integration Server 10.7 | Web Services Developer’s Guide | Web Service Authentication and Authorization | ACL Checking Scenarios for Provider Web Service Descriptors
 
ACL Checking Scenarios for Provider Web Service Descriptors
The following tables identify the various combinations of the ACL checking results for a provider web service descriptor and its handler services.
Important:
This information only applies to a provider web service descriptor that runs on the web services stack available in Integration Server 8.2 or later (that is, the Pre-8.2 compatibility mode property is set to false). For information about the ACL checking scenarios for a provider web service descriptor that runs on the web services implementation introduced in Integration Server versions 7.1, see ACL Checking Scenarios for Provider Web Service Descriptors on an Earlier Web Services Implementation.
Note:
For the JMS transport, Integration Server proceeds as if the transport credentials are provided and valid.
Transport Credentials Provided?
Message Credentials Provided?
WSD ACL Result
Handler ACL Result
Request Handler Executes?
SOAP Fault Returned?
Response Handler Executes?
Behavior
No
No
Fail
NA
No
Yes
No
2
No
No
Pass
Fail
No
Yes
No
4
No
No
Pass
Pass
Yes
NA
Yes
1
No
Yes
Fail
NA
No
Yes
No
2
No
Yes
Pass
Fail
No
Yes
No
4
No
Yes
Pass
Pass
Yes
NA
Yes
1
Yes
No
Fail
NA
No
Yes
No
2
Yes
No
Pass
Fail
No
Yes
No
4
Yes
No
Pass
Pass
Yes
NA
Yes
1
Yes
Yes
Fail
NA
No
Yes
No
2
Yes
Yes
Pass
Fail
No
Yes
No
4
Yes
Yes
Pass
Pass
Yes
NA
Yes
1
Yes, but incorrect
NA
NA
NA
No
No
No
6
Behavior
Description
1
Endpoint service executes.
2
Integration Server returns the following:
*An HTTP response status code of 401
*A SOAP fault with the message [ISS.0088.9164] Access to WSDescriptor <webServiceDescriptorName> denied.
3
Integration Server returns the following:
*An HTTP response status code of 401
*A SOAP fault with the message [ISS.0088.9164] Access to WSDescriptor <webServiceDescriptorName> denied.
4
Integration Server returns the following:
*An HTTP response status code of 401
*A SOAP fault with the message [ISS.0088.9433] Access denied to Handler Service <handlerService>
5
Integration Server returns the following:
*An HTTP response status code of 500
*A SOAP fault with the message [ISS.0088.9433] Access denied to Handler Service <handlerService>
6
Integration Server returns the following:
*An HTTP response status code of 401
*A “<h4>Access Denied</h4>” message