Java web services: WS-Security with CXF

See the original posting on IBM developerWorks – Java

The Apache CXF web services stack supports WS-Security, including using
WS-SecurityPolicy to configure the security handling. CXF is flexible in how
you configure the deployment parameters used at run time to implement the
security handling, supporting both static and dynamic configuration options
for the client side. In this article, Java web services series author Dennis
Sosnoski shows how to use CXF for both a simple UsernameToken WS-Security
example and one using signing and encryption.