How should my clients supply username + password ?

Hi,
I need to write a webService with authentication.
Namely: client applications must supply username + password ( which will be checked against our LDAP server ).
I'm new to this, so I'd appreciated it if someone could tell: how should my clients supply the password ?
- Is it customary to supply the username+password through standard HTTP headers (say, 'basic authentication') ?
- Or, is it handled by the webServices/security spec ? Does the < soap:Envelope > message structure keep a dedicated tag for user/password info ? Something like:
<soap:Envelope...>
< ! -- dummy tag! -- >
<login user='jelly' password='secret' />
</soap:Envelope...>
Thanks very much.

I have the same question. Have you figured this out yet?

Similar Messages

  • How to check if the username/password can login?

    Can I check if a username/password can login a db in pl/sql?
    e.g. I have a sid @server1 and username/password as user1/password1.
    Is there any function in pl/sql to check if user1/password1 can login server1?
    I am using Oracle 8.1.6.
    thx

    if you are looking for a customized validation, you could use triggers. You can write triggers against database events such as
    DATABASE LOGON event.
    CREATE OR REPLACE TRIGGER <trigger name>
    AFTER LOGON on DATABASE
    BEGIN
    . /* your customized validation goes here */
    END;

  • How do I set no username / password in CE11?

    I have written a report, and published it to Crystal Enterprise 11.
    The report is based off a text file, and as such requires no username or password to access.
    However, I have method of setting this up in CE11.  Every option requires me to enter a username/password.
    And, blanks do not suffice.
    What can I do?

    If the text file is in a shared network folder, you may need to provide a valid network login for the folder.  Just a guess...
    Jason

  • How to get the admin username & password for JMX connection

    Hi All,
    I need to retrieve the username & password and pass it to the JNDI to get the JMX connection for MBean Server. I will be doing this locally.
    Is there an API that I can use to retrieve this information ?
    thanks
    -sheshi

    Forgot to mention, I am using WebLogic 9.1

  • How to supply username/password and hostname when calling a web service

    The Workshop Help contains a chapter named "To Use the Java Proxy in a Separate Java Application". It includes the following code:
    public class Main
    public static void main(String[] args)
    try
    HelloWorld_Impl proxy = new HelloWorld_Impl();
    HelloWorldSoap soapProxy = proxy.getHelloWorldSoap();
    System.out.println(soapProxy.Hello());
    catch (Exception e)
    e.printStackTrace();
    Questions:
    1. How is the username and password supplied in case the Hello World web service is secured?
    (I have not found any Javadoc for weblogic.webservice.core.rpc.ServiceImpl, but from the code assist I see a constructor taking two Strings....)
    2. Is there a way to supply a hostname, and port, in case the Hello World web service exists on more than one host?

    If I need to specify the wsdl url it fails as wsdl it self is protected. How do I pass in the userId/password while getting the wsdl.
    E.g:
    /*Line below fails as userId/password is not passed.*/
    HelloWorld_Impl proxy = new HelloWorld_Impl(wsdlLocation);
    HelloWorldSoap soapProxy = proxy.getHelloWorldSoap("username", "passwd");
    System.out.println(soapProxy.Hello());

  • How to add Security Token / Username/Password on WSDL?

    Hello,
    I have made a BPEL process i.e. exposed as a http WebService. I want to use Security Token on it. Because of Security reason I don't want anyone able to call my WebService unless they provide us the username and password.
    Thanks.

    See
    Disabling
    Remote Development Services
    If you use Macromedia Dreamweaver MX or Macromedia HomeSite+ to
    develop your applications, you can access a remote ColdFusion MX 7
    server using HTTP. However, you must configure Remote Development
    Services (RDS) in your integrated development environment (IDE),
    and RDS must be enabled in ColdFusion MX 7. Using RDS, IDE users
    can securely access remote files and data sources, build SQL
    queries from these data sources, and debug CFML code.
    Note: The ColdFusion Report Builder uses RDS for the Query
    Builder and for charting support.
    However, for security reasons, Macromedia recommends that you
    disable RDS on a production server. To disable it, you must disable
    the RDSServlet mapping.
    You actually configure your data sources through the
    ColdFusion Administrator (and I guess through Dreamweaver too,
    although I have never used it myself), but RDS lets you work with
    them. Bottom line, if you allow your developer access to ColdFusion
    via RDS, then they will have all of the privileges that are allowed
    to the data source for the account that is configured in the
    ColdFusion administrator for that database.
    Phil

  • Got premium with Facebook login - how do i set a username/password for regular login

    Hello all,i got the student premium whilest logged in with facebook, but i would like to set a usename/password to log in 'normally'. how can i do that?thank you!

    Hey there , welcome to the community!
    I apologize for the late reply. The workaround for this would be to create a new account. If you contact the accounts team through the online contact form they can set you up with a new account and transfer over all your content. If you receive an automated reply directing you back to the community, just reply to it and you will be connect with an agent that can assist you.

  • Not able to find aliased tables when supplying username/password

    <p>I am able to run my report which contains several aliased tables just fine as long as I have the application (Viewer?) ask for the login credentials for the database. But it seems if I try to set the login credentials in the Viewer jsp, I then receive the following error message which states that it cannot find the table, stating that it is looking for a table with the alias name... not the actual name.</p><p>&#39;PositionEducation&#39; is the alias for a table named &#39;large_text&#39;, this table is aliased several times in the report so it can pull the different types of data it needs.</p><p>Thanks, Steve</p><p>*** Update  -- I did an update to the latest files and it pulled some newer jars from Crystal even though I had just installed this a few days ago :)... anyway, it now works where the application (Viewer?) does not ask me for credentials (I assume they are embedded within the rpt) and it goes on through like it did before. HOWEVER, I still have the problem that if I try to manually override the login credentials, I still receive the error as stated </p><p>*** End Update</p><p> </p><p> 2007-03-28 11:38:15,843 ERROR [com.businessobjects.reports.sdk.JRCCommunicationAdapter] - <JRCAgent2 detected an exception: The table &#39;PositionEducation&#39; could not be found.<br />    at com.crystaldecisions.reports.reportdefinition.datainterface.g.a(Unknown Source)<br />    at com.crystaldecisions.reports.dataengine.bj.new(Unknown Source)<br />    at com.crystaldecisions.reports.common.as.a(Unknown Source)<br />    at com.crystaldecisions.reports.common.ae.a(Unknown Source)<br />    at com.businessobjects.reports.sdk.b.k.a(Unknown Source)<br />    at com.businessobjects.reports.sdk.b.w.m(Unknown Source)<br />    at com.businessobjects.reports.sdk.JRCCommunicationAdapter.request(Unknown Source)<br />    at com.crystaldecisions.proxy.remoteagent.x.a(Unknown Source)<br />    at com.crystaldecisions.proxy.remoteagent.q.a(Unknown Source)<br />    at com.crystaldecisions.sdk.occa.report.application.dd.a(Unknown Source)<br />    at com.crystaldecisions.sdk.occa.report.application.ag.a(Unknown Source)<br />    at com.crystaldecisions.sdk.occa.report.application.av.if(Unknown Source)<br />    at com.crystaldecisions.sdk.occa.report.application.an.new(Unknown Source)<br />    at com.crystaldecisions.sdk.occa.report.application.cb.for(Unknown Source)<br />    at com.crystaldecisions.proxy.remoteagent.u.performDo(Unknown Source)<br />    at com.crystaldecisions.proxy.remoteagent.u.a(Unknown Source)<br />    at com.crystaldecisions.sdk.occa.report.application.DatabaseController.a(Unknown Source)<br />    at com.crystaldecisions.sdk.occa.report.application.DatabaseController.setTableLocation(Unknown Source)<br />    at com.crystaldecisions.reports.sdk.DatabaseController.setTableLocation(Unknown Source)<br />    at com.businessobjects.samples.JRCHelperSample.changeDataSource(JRCHelperSample.java:182)<br />    at com.businessobjects.samples.JRCHelperSample.changeDataSource(JRCHelperSample.java:80)<br />    at org.apache.jsp.WEB_002dINF.jsp.reports.Evaluation_002dviewer_jsp._jspService(Evaluation_002dviewer_jsp.java:76)<br />    at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97)<br />    at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)<br />    at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:334)<br />    at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314)<br />    at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264)<br />    at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)<br />    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:252)<br />    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)<br />    at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:39)<br />    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)<br />    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)<br />    at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:672)<br />    at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:463)<br />    at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:398)<br />    at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:301)<br />    at org.springframework.web.servlet.view.InternalResourceView.renderMergedOutputModel(InternalResourceView.java:111)<br />    at org.springframework.web.servlet.view.AbstractView.render(AbstractView.java:250)<br />    at org.springframework.web.servlet.DispatcherServlet.render(DispatcherServlet.java:965)<br />    at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:744)<br />    at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:663)<br />    at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:394)<br />    at org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:348)<br />    at javax.servlet.http.HttpServlet.service(HttpServlet.java:689)<br />    at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)<br />    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:252)<br />    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)<br />    at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:118)<br />    at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:52)<br />    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)<br />    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)<br />    at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:75)<br />    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:77)<br />    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)<br />    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)<br />    at net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:292)<br />    at net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:84)<br />    at net.sf.acegisecurity.intercept.web.SecurityEnforcementFilter.doFilter(SecurityEnforcementFilter.java:182)<br />    at net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:303)<br />    at net.sf.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:305)<br />    at net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:303)<br />    at net.sf.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:226)<br />    at net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:303)<br />    at net.sf.acegisecurity.util.FilterChainProxy.doFilter(FilterChainProxy.java:173)<br />    at net.sf.acegisecurity.util.FilterToBeanProxy.doFilter(FilterToBeanProxy.java:125)<br />    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)<br />    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)<br />    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)<br />    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178)<br />    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)<br />   
    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)<br />    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)<br />    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)<br />    at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcessor.java:833)<br />    at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.process(Http11AprProtocol.java:639)<br />    at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:1285)<br />    at java.lang.Thread.run(Unknown Source)<br />><br /> </p>

    <p> </p><p>From the stack trace, the problem appears to be happening in the setTableLocation method call.</p><p>There&#39;s a known issue with the JRC when you try and transfer datasource location for multiple aliases pointing to the same database table. </p><p>You may, however, need not trigger the setTableLocation method call, if you wish merely to enter database logon credentials.</p><p>The way to enter it would be to use ReportClientDocument method getDatabaseController().logon(String, String).  This should get you the same behavior as with the viewer.</p><p>TUeda </p>

  • Where is username/password in webservice call

    Hi,
    I'm have a webservice client based on a simple WLS sample client that makes a
    call of the form:
    <my service name>Port port = <my service name>_Impl().get<my service name>Port()
    The get<my service name>Port can optionally take "username" and "password" parameters
    to allow the client to invoke a secured web service. How are "username" and "password"
    passed? In the SOAP message itself, in HTTP...? I dumped the SOAP request using
    the verbose option and do not see the username or password.
    We want to be able to have .NET clients invoke these secured web services also
    and have not been able to figure out how a .NET client specifies username/password
    to invoke our web service. Has anyone done this?
    Thanks in advance.

    WLS use HTTP basic auth. The user name and passwd are in the HTTP
    header.
    I know that we test basic auth with .Net, but not sure how to set username
    and passwd in the .net client.
    http://manojc.com
    "Jack Ottofaro" <[email protected]> wrote in message
    news:3edfaa1c$[email protected]..
    >
    Hi,
    I'm have a webservice client based on a simple WLS sample client thatmakes a
    call of the form:
    <my service name>Port port = <my service name>_Impl().get<my servicename>Port()
    >
    The get<my service name>Port can optionally take "username" and "password"parameters
    to allow the client to invoke a secured web service. How are "username"and "password"
    passed? In the SOAP message itself, in HTTP...? I dumped the SOAP requestusing
    the verbose option and do not see the username or password.
    We want to be able to have .NET clients invoke these secured web servicesalso
    and have not been able to figure out how a .NET client specifiesusername/password
    to invoke our web service. Has anyone done this?
    Thanks in advance.

  • How can i specify username/password while creating a virtual directory

    Hi,
    i m trying to create a virtual directory in 9iAS on a mapped drive. How can i specify which username password to use to enable to connect to the network mapped drive. Is there any way where we can specify username / password ???
    thanks
    Unmesh

    9iAS R1
    Run the report service as a local account with administrator rights.
    On the target server, create a local account with the same user name and password.
    Now you can use the hidden shares ($) for example:
    &destype=file&desname=\\servername\d$\report_output\report.pdf
    9iAS R2 and 10g
    Pretty much the same thing except by default, the report server runs inline. I have not been able to get the entire service to run as a particular user. To get around this, I created a report server service and do not run the reports in process. It uses the separate service.
    rwserver -install rep90_name
    edit <ORACLE_HOME>\reports\conf\rwservlet.properties file.
    SERVER_IN_PROCESS=NO
    SERVER=rep90_name
    Edit service for rep90_name and change it to run as local administrator user you created on both servers and then start the service.

  • Using SSO username/password in java portlet for Database Connection

    Hi all,
    We implemented java portlet with environment Oracle Application server 10.1.2 and Portal 10.1.4
    At present we are picking the database username and password and connect string in properties and our
    java class is reading the properties file and connecting to database to fetch the records.
    Our idea is to not to pick the username/password and connect string from the properties file or
    not to configure the datasource in data_source.xml.
    Our Requirement is who ever login to the Portal(SSO) our java class should pick the sso username/password and
    connect to database to fetch the record(s).
    Because our database users are one to one mapped to sso user(s) of portal.
    We request anyone to guide us how can we do it or suggest any suitable solution for our requirement.
    Thanks
    Dan Tey

    I think this is a no-go, since you cannot retrieve a cleartext password from the OID if I'm correct.

  • Certificate selection and PIN entry include username/password

    Our users are using Windows 7 and Internet Explorer.
    When they visit a page that requires client authentication, they're prompted to "Select a certificate". However, their certificates are loaded below a username/password prompt.
    When they select a certificate, during the PIN prompt, it also has a username/password prompt. They can't enter a PIN without clicking below to the PIN prompt, which is very irritating for users.
    How do I disable the username/password prompt when selecting a certificate?
    Thanks.

    Hi,
    Did you use IIS?
    If yes, try the methods in this article:
    Why do I still get a user/password Login prompt with Integrate Authentication (for Virtual server 2005 Administration website)
    Remove Username-Password Prompts from the Web Module with Windows Authentication
    Meanwhile, please post this issue in asp.net forum for more professional help.
    http://forums.asp.net/
    If no, give us a screenshot about your issue.
    Karen Hu
    TechNet Community Support

  • OraclePersonalizationProvider invalid username/password

    Hiya
    I have been following the instructions in Oracle Providers for ASP.NET Developer's Guide 11g Release 1 (11.1.0.6.20) and have become stuck.
    I just want to use Oracle for WebPart personalization so I logged onto Oracle (not localhost as no Oracle installed locally) as sysdba, I then ran InstallOracleASPNETCommon.sql which ran fine. Then I ran InstallOraclePersonalization.sql which keep prompting me for CURRENTUSER. I then altered my config file and ran the web app and got an invalid username/password error. I thought that maybe using the sys username had been a bad idea so I uninstalled and used the username I had already set up for this web app but got the same error. Then I tried using aspnet as this is given in the config example in the documentation but still no joy. obviouslly I changed the username and password in the config file each time I tried running the scripts with a different username.
    Am I doing something wrong? Is it not a username that the prompt is for? Should I be putting username/password or something? Do I need to create aspnet as a user first? There's no mention in the documentation that the sql scripts will prompt you so I'm just not sure I'm doing it right. Can anyone help?
    Thanks :)

    <p>
    Hiya
    Yes it was using the Oracle SQL Developer tool taht was causing my prompting problem. I got one of our Oracle DBA's to give me a hand and we did the following:
    Logged onto SQLPlus as sysdba
    Created a new user with the following sql -
    create role aspnet_role
    grant
    alter session,
    create cluster,
    create indextype,
    create library,
    create materialized view,
    create procedure,
    create public synonym,
    create sequence,
    create session,
    create synonym,
    create table,
    create trigger,
    create type,
    create view,
    create job,
    drop public synonym,
    query rewrite
    to aspnet_role
    create user aspnet
    identified by aspnet
    default tablespace users
    temporary tablespace temp
    quota unlimited on users
    grant aspnet_role to aspnet
    grant execute on dbms_scheduler to aspnet
    grant execute on dbms_job to aspnet
    Exited sqlplus then logged back in again as aspnet user
    ran the InstallAllOracleASPNETProviders.sql file in sqlplus
    everything runs without error
    In my web.config file I add the following connection string
    </p>
    <p>
    &lt;add name="OraAspNetConStringJcs" connectionString="Data Source = jcs.jcslweb06; User ID = aspnet ; Password = 'aspnet' "/&gt;
    now I add the personalisation to the config
    </p>
    <p>
    &lt;personalization defaultProvider="CustomOraclePersonalizationProvider"&gt;
    &lt;providers&gt;
    &lt;add name="CustomOraclePersonalizationProvider" type="Oracle.Web.Personalization.OraclePersonalizationProvider,<br /><br />Oracle.Web, Version=2.111.6.20, Culture=neutral, PublicKeyToken=89b483f429c47342" connectionStringName="OraAspNetConStringJcs"
    applicationName="JCS"/&gt;
    &lt;/providers&gt;
    &lt;/personalization&gt;
    If I run the web site I get a ora-1017 invalid username/password error
    If I use the <strong>same</strong> credentials to log in using Oracle SQL Developer tool it works fine
    If I log in via sqlplus it works fine.
    Having googled the problem I've tried putting the username/password in uppercase and turning off the case sensitivity but it always throws this error even though the credentials are correct.
    Now I'm gettting ora-28000 - the account is locked and will have to go and find someone to tell me how to unlock it!
    Any ideas why it won't authorise my valid credentials?
    </p>

  • Howto access Apex through dbms_epg without username/password ?

    I had just setup HTMLDB using dbms_epg (htmldb_epg_config.sql).
    Now i'm unable to access http://localhost:port/htmlb via http without username/password.
    Granting anonymous access to xdb repository doesn't help. I'm able to access http://localhost:port without username/password, but then i try http://localhost:port/htmlb - no go.
    How can i enable http access to http://localhost:port/htmlb without username/password ?

    We are using 10.2.0.2 EE Edition and decided to try Apex without use of standalone Apache.
    I've already done that while running dbms_epg_config.sql
    declare
    l_cfg xmltype;
    begin
    dbms_xdb.cfg_update(xmltype.appendchildxml(dbms_xdb.cfg_get(),'/xdbconfig/sysconfig/protocolconfig/httpconfig', xmltype('<allow-repository-anonymous-access xmlns="http://xmlns.oracle.com/xdb/xdbconfig.xsd">true</allow-repository-anonymous-access>')));
    exception
    when others then
    select updatexml(dbms_xdb.cfg_get(),'/xdbconfig/sysconfig/protocolconfig/httpconfig/allow-repository-anonymous-access/text()','true') into l_cfg from dual;
    dbms_xdb.cfg_update( l_cfg );
    commit;
    dbms_xdb.cfg_refresh;
    end;
    I'm actually able to access repository without supply username/password.
    The troubles begin as sun as i try to access /htmldb - it wants password for HTMLDB_PUBLIC_USER account before i can proceed.

  • Consumer application username/password setting

    Hello,
    We are migrating our ADF server from 11.1.1.2 to 11.1.15.
    We have a problem with an application that is a web service consumer.
    The username/password are set when you create the connection in the wizard from jdevelopper.
    On the developer PC, it works.
    On the 11.1.1.2, after a jdev deploy it works.
    On the 11.1.1.5, after a jdev deploy it does not work.
    I have snooped the traffic between the adf consumer and the web server (provider).
    It does not work because it does not send the username/password in the http header.
    How can I reconfigure the username password that it used to authenticate in the web server
    providing the web service.
    Thanks in advance for your answer.

    Hi,
    please check below link
    13.2.2 How to Create a New Web Service Connection
    http://docs.oracle.com/cd/E23943_01/web.1111/b31974/web_services.htm#CJAEFIAJ
    This will create Application_name\.adf\META-INF\connection.xml
    <Reference name="TestService" className="oracle.adf.model.connection.webservice.impl.WebServiceConnectionImpl" credentialStoreKey="TestService" xmlns="">
    <Factory className="oracle.adf.model.connection.webservice.api.WebServiceConnectionFactory"/>
    <RefAddresses>
    <XmlRefAddr addrType="WebServiceConnection">
    <Contents>
    <wsconnection description="file:/C:/JDeveloper/mywork/WS-Proxy-Authentication/Project2/src/com/client/TestService.wsdl" service="{http://SampleWebService/}TestService">
    <model name="{http://SampleWebService/}TestService" xmlns="http://oracle.com/ws/model">
    <service name="{http://SampleWebService/}TestService">
    <port name="TestPort" binding="{http://SampleWebService/}TestPortBinding">
    <soap username="transportUserName" password="transportPassword" addressUrl="http://localhost:7001/WS-Proxy-Authentication-Project1-context-root/TestPort" xmlns="http://schemas.xmlsoap.org/wsdl/soap/"/>
    <operation name="hello">
    <soap soapAction="" xmlns="http://schemas.xmlsoap.org/wsdl/soap/"/>
    <input name=""/>
    <output name=""/>
    </operation>
    </port>
    </service>
    </model>
    </wsconnection>
    </Contents>
    </XmlRefAddr>
    <SecureRefAddr addrType="transportPassword"/>
    <SecureRefAddr addrType="transportUserName"/>
    </RefAddresses>
    </Reference>
    HTH
    Regards,
    Sunil P

Maybe you are looking for