Rapid Prototyping Solution Sheet

Rapidly prototype and test both REST and SOAP based Web services e SOAP-based
Get your project to market quicker

The Problem
Backend Web services generally require more time and resources to develop than client side services. As a result, client-side development groups, working typically in parallel, produce a variety of clients for different departments, business units, affiliates, etc. long before the first backend Web service sees the light of day. Unfortunately, that leaves each of these client teams stuck, waiting for the backend service to come online before testing can begin. Even when the backend service becomes available, multiple iterations of the service and client will likely be required as each team inputs the results of their client testing. The result is delayed time to implementation implementation.

The Layer 7 Solution

Instead of waiting for backend Web services to be built, the SecureSpan XML Gateway can be used to simulate W services Web that client teams can test against. For developers and testers, a clone able, virtual SecureSpan XML Gateway that can be or clone-able, deployed either in the cloud or on developers desktops not only reduces system costs, but also simplifies management and setup of test and development environments In this scenario, the SecureSpan Gateways built-in template response etup environments. in templa capabilities allow organizations to test a service stub against its WSDL or REST interface in parallel with the service implementation. Here, soapUI from Layer 7 can provide developers with the ability to inspect, invoke, develop and simulate oapUI ity Web services. Testers can also use soapUI to perform functional, load and compliance testing of Web services Once the idea services. has been tested out, development can start on coding the actual backend service while continuing to leverage SecureSpan Gateway templates and a refreshed WSDL (taken from the backend service) to refine the client application. And once the backend service is ready to accept requests, SecureSpan Gateway policies can simply be updated to route to the new SecureSpan services, eliminating potential impacts on client client-side applications. With a SecureSpan XML Gateway in place early in a SOA project, organizations can facilitate rapid prototyping of backend services, as well as early testing of frontend clients.

Key Features
SecureSpan XML Gateway
Identity-based access to services and operations Manage security for cross-domain and B2B relationships Secure WSDL, REST and POX interfaces Integration with leading identity, access, SSO and federation systems from Oracle, Sun, Microsoft, CA, IBM Tivoli, Novell Enforce fine-grained entitlement decisions authored in an XACML PDP Credential chaining, credential remapping and support for federated identity Integrated SAML STS issuer featuring comprehensive support for SAML 1.1/2.0 authentication, authorization and attribute based policies Integrated PKI CA for automated deployment and management of client-side certificates, and integrated RA for external CAs STS support through WS-Trust and WS-Federation Selectively control access to interfaces down to an operation level Create on-the-fly composite WSDL views tailored to specific requestors Out of the box support for popular Cloud & SaaS interfaces from SFDC & Amazon Service look-up and publications using WSIL and UDDI

soapUI from Layer 7

WSDL Service Invocation Automatic generation of Web Service requests from associated schema Support for Basic, Digest, WS-Security and NTLM Web Service authentication Automatically add WS-Addressing headers to outgoing requests WS-Security tool support for encrypting/decrypting and signing/validating messages Support for attachments testing; MTOM, SOAP with Attachments, Inline files Manage custom HTTP Headers for each request Raw message viewer for unprocessed message content as it is sent over the wire Automatic generation of REST Service requests from associated schema Support all WADL parameter types and representations Support for Basic, Digest, WS-Security and NTLM Web Service authentication Support for simulating HTML Forms and MIME Attachments Manage custom HTTP Headers for each request Raw message viewer for unprocessed message content as it is sent over the wire Create/generate any number of TestSuites and TestCases Assert messages for schema compliance, XPath or XQuery matching, etc. Easily transfer content between responses and requests XPath-based conditions to control TestCase execution paths MockResponse support for client or asynchronous Web services testing Command Line or Maven support for continuous integration/testing Extensive scripting support for creating complex or dynamic test scenarios Create any number of Web Service LoadTests for a TestCase Choose between configurable Web Service Load Strategies, Limits and Thread-counts; analyze how Web services perform under a variety of scenarios Assert LoadTest results continuously for performance and functionality surveillance Web services usage behavioral diagrams allow real time analysis of performance Export results, statistics, logs, diagram data, etc. for external processing Run multiple LoadTests interactively in soapUI or through Maven

REST Service Invocation

Web Services Functional Test

Web Services Load Test

Supported Standards
XML, JSON, SOAP, REST, PCI-DSS, AJAX, XPath, XSLT, WSDL, XML Schema, LDAP, SAML, XACML, OAuth, PKCS, POP3, X.509 Certificates, FIPS 140-2, Kerberos, XML Signature, XML Encryption, SSL/TLS, SNMP, SMTP, IMAP4, HTTP/HTTPS, JMS, MQ Series, Tibco EMS, FTP/FTPS, WS-Security, WS-Trust, WS-Federation, WS-SecureExchange, WS-Addressing, WS-SecureConversation, WS-MetadataExchange, WS-Policy, WS-SecurityPolicy, WS-PolicyAttachment, WSIL, WS-I, WS-I BSP, UDDI, WSRR, MTOM, IPv6, WCF To learn more about Layer 7 call us today at +1 800.681.9377 (toll free within North America) or +1.604.681.9377. You can also email us at info@layer7.com; friend us on facebook.com/layer7; visit us at layer7.com, or follow-us on twitter @layer7
Copyright 2011 Layer 7 Technologies Inc. All rights reserved. SecureSpan and the Layer 7 Technologies design mark are trademarks of Layer 7 Technologies Inc. All other trademarks and copyrights are the property of their respective owners.