Front cover -- Contents -- Notices -- Trademarks -- Preface -- Changes to the previous redbook SG24-6891 -- The team that wrote this redbook -- Become a published author -- Comments welcome -- Part 1 Web services concepts -- Chapter 1. Web services introduction -- Introduction -- Service-oriented architecture -- Characteristics -- Requirements -- Web services -- Properties of Web services -- A short history of Web services -- Summary -- More information -- Chapter 2. Web services standards -- Categorization of Web services standards -- Core standards -- SOAP: Simple Object Access Protocol -- WSDL: Web Services Description Language -- UDDI: Universal Description, Discovery, and Integration -- XML -- Description and discovery -- WS-Inspection: Web Services Inspection Language (WSIL) -- WS-Discovery -- WS-MetadataExchange -- WS-Policy -- WS-PolicyAssertions -- WS-PolicyAttachement -- DNS Endpoint Discovery (DNS-EPD) -- Messaging -- ASAP: Asynchronous Services Access Protocol -- SOAP Messages with Attachments (SwA) -- SOAP Message Transmission Optimization Mechanism -- WS-Addressing -- WS-Notification -- WS-Eventing -- WS-Enumeration -- WS-MessageDelivery -- WS-Reliability -- WS-ReliableMessaging -- WS-Resources -- WS-Transfer -- Management -- WSDM: Web Services Distributed Management -- WS-Manageability -- SPML: Service Provisioning Markup Language -- WS-Provisioning -- Business processes -- BPEL: Business Process Execution Language -- WS-CDL -- WS-CAF -- Transactions -- WS-Coordination (WS-COOR) -- WS-Transaction -- WS-AtomicTransaction (WS-AT) -- WS-BusinessActivity (WS-BA) -- Security -- XML-Encryption -- XML-Signature -- WS-Security -- WS-SecureConversation -- WS-SecurityPolicy -- WS-Trust -- WS-Federation -- SAML: Security Assertion Markup Language -- User experience -- WSRP: Web Services for Remote Portlets -- J2EE 1.4 and Java JSRs.

JSR 101: Java APIs for XML-based RPC (JAX-RPC) -- JSR 109: Implementing Enterprise Web Services -- JSR 31: Java Architecture for XML Data Binding (JAXB) -- JSR 67: Java APIs for XML Messaging 1.0 (JAXM) -- JSR 93: Java API for XML Registries 1.0 (JAXR) -- JSR 110: Java APIs for WSDL (WSDL4J) -- JSR 172: J2ME Web Services -- JSR 173: Streaming API for XML -- JSR 181: Web Services Metadata for the Java Platform -- JSR 208: Java Business Integration (JBI) -- JSR 222: Java Architecture for XML Binding (JAXB) 2.0 -- JSR 224: Java API for XML-based RPC (JAX-RPC) 2.0 -- JSR 921: Implementing Enterprise Web Services 1.1 -- Web services organizations and groups -- Internet Engineering Task Force -- Java Community Process -- OASIS -- World Wide Web Consortium -- Web Services Interoperability Organization -- UDDI -- Companies working on Web services -- IBM -- Microsoft -- Vertical industry standards organizations -- Summary -- More information -- Chapter 3. Introduction to SOAP -- Overview -- The three pillars of SOAP -- Overall message format: Envelope with header and body -- Encoding rules -- RPC representation -- SOAP elements -- Namespaces -- URN -- SOAP envelope -- Headers -- WS-I conformance header -- Body -- Error handling -- Advanced topics -- Data model -- Mappings -- Communication styles -- Encodings -- Messaging modes -- Implementations -- SOAP implementation general architecture -- Apache SOAP 2.3 implementation -- SOAP server -- Server deployment -- SOAP client API -- Apache Axis -- Axis server architecture -- Axis client architecture -- Axis subsystems -- Implementations -- WebSphere Web services engine -- Microsoft SOAP Toolkit -- Other toolkits and server implementations -- Outlook -- Summary -- More information -- Chapter 4. Introduction to WSDL -- Overview -- WSDL document -- WSDL document anatomy -- Example -- Physical files -- Namespaces.

WSDL definition -- Types -- Messages -- Port types -- Operations -- Bindings -- Service definition -- Port definition -- WSDL bindings -- SOAP binding -- HTTP binding -- MIME binding -- WSDL API -- Outlook -- Summary -- More information -- Chapter 5. JAX-RPC (JSR 101) -- Terminology: JAX-RPC and JSR 101 -- JAX-RPC basics -- JAX-RPC client -- JAX-RPC client programming styles -- Static stub -- Dynamic proxy -- Dynamic invocation interface (DII) -- Which style to use -- Managed and unmanaged JAX-RPC clients -- JAX-RPC specification details -- Data type mapping: XML to Java, Java to XML -- Summary -- More information -- Chapter 6. Web Services for J2EE -- Web services for J2EE overview -- Client programming model -- Overview -- Client concepts -- Static stub -- Dynamic proxy -- Dynamic invocation interface (DII) -- Packaging -- Web service for J2EE client deployment descriptor -- JAX-RPC mapping deployment descriptor -- Roles -- Server programming model -- Overview -- Server concepts -- Service implementation bean -- Server container responsibilities -- Packaging -- Web service deployment descriptor -- JAX-RPC mapping deployment descriptor -- Roles -- Transactions -- Handlers -- Security -- WSEE implementations in WebSphere -- SOAP over HTTP -- SOAP over JMS -- Summary -- More information -- Chapter 7. Introduction to UDDI -- UDDI overview -- Static versus dynamic Web services -- UDDI registry structure -- Interactions with UDDI -- Publishing information -- Finding information -- Using the information -- New features in UDDI Version 3 -- Keys assigned by publisher -- Human-friendly URI-based keys -- Complex registry topologies -- Advanced security features -- Policies -- Data model updates -- Extended inquiry API -- Subscription API -- Registry management -- UDDI support in WebSphere Application Server -- Advanced features of UDDI.

Modeling features for complex business entities -- External taxonomies -- Powerful inquiry -- Combining categories -- Advanced search using categorization -- Qualifier for searching -- Internationalization features -- Peer-based replication -- UDDI business registries on the Web -- Web front ends for registries -- Finding information -- Publishing information -- Publishing sequence -- Accessing your services -- Java APIs for dynamic UDDI interactions -- UDDI4J overview -- Prerequisites -- Using the library -- Writing UDDI clients -- Creating a proxy object -- Finding information -- Publishing information -- Private UDDI registries -- Motivation for the use of private UDDI registries -- Need for privacy -- Getting rid of UDDI pollution -- Standards and guidelines -- Possible scenarios for private UDDI registries -- Internal registry -- e-marketplace UDDI registries -- Extranet UDDI registries -- Benefits of private UDDI registries -- Additional considerations for private UDDI registries -- Propagation -- Securing APIs -- WebSphere private UDDI registry -- WebSphere Application Server V5.0.2 update -- WebSphere Application Server V5.1 update -- WebSphere Application Server V6.0 update -- Summary -- More information -- Chapter 8. Web Services Inspection Language -- Overview -- WS-Inspection document -- WS-Inspection document anatomy -- Example -- Namespaces -- WS-Inspection and UDDI relationship -- WS-Inspection definition -- Services -- Service name -- Service description references -- Links -- WS-Inspection bindings -- WSDL binding -- UDDI binding -- WS-Inspection document publishing -- WS-Inspection examples -- WSDL binding example -- UDDI binding example -- WS-Inspection API -- Outlook -- Summary -- More information -- Chapter 9. Web services security -- Security overview -- Web services security exposures -- WS-Security.

Evolution of the WS-Security specification -- WS-Security support in WebSphere Application Server -- WS-Security road map -- Web services security model framework -- When to use WS-Security -- Example of WS-Security -- Authentication -- Steps to enable a basic authentication -- Integrity -- Steps to enable integrity -- Confidentiality -- Steps to enable confidentiality -- Transport-level security -- SOAP/HTTP transport-level security -- When to use transport-level security -- Summary -- More information -- Chapter 10. Web services interoperability -- Definition -- Web Services Interoperability Organization -- WS-I Basic Profile V1.1 and Simple SOAP Binding Profile V1.0 -- WS-I Attachments Profile V1.0 -- WS-I tools -- WS-I conformance claims -- WebSphere interoperability -- Interoperability with .NET -- RPC/literal WSDL -- WS-I conformance claims -- SwA not supported -- WSDL import statements -- Mandatory header handling -- UTF-16 WSDL -- User exception handling -- Object inheritance -- Null and empty array handling -- Null primitives and dates -- WS-Security support -- Representation of arrays in WSDL -- Summary -- More information -- Chapter 11. Web services architectures -- Service-oriented architecture -- Enterprise service bus -- Web services versus service-oriented architectures -- Web services protocol stack -- Message exchange patterns -- One-way -- Asynchronous two-way -- Request-response -- Workflow-oriented -- Publish-subscribe -- Composite -- SOAP processing model -- Web service gateways -- Summary -- More information -- Chapter 12. Best practices -- Generic best practices -- Be WS-I compliant -- Use simple data types -- Avoid nillable primitives -- Avoid fine-grained Web services -- Avoid Web services for intra-application communication -- Use short attribute, property, and tag names -- Avoid deep nesting of XML structures.

Apply common sense (also known as being defensive).