My requirement is this.
My BPEL process invokes a External Webservice which returns the Response (CreditCard Info and few other details ) in plain text format. So this response is visible in BPEL audit trail. We do not want this info to be visible anywhere in BPEL.
How can i encrypt the response received from the Webservice in my SOA layer.
Do we need any custom Java code for this?
Kindly help or provide me to any useful pointers.
Thanks for your suggestion.
The requirement is , after the Creditcard number is returned from the Webservice it need to encrypted and at anytime if we are again invoking another webservice which requires this creditcard number to be in decrypted format , we should be able to do decryption in BPEL before invoking.
I went through the example which is posted in SOA Sample website . But seems that doesn't meet my requirement.
Can we attach a policy (which do encryption) which is only for the response returned from the Web Service ?
some useful links about this topic are:
Hope this hels,