Recently I worked out a SOAP Web Service/WS-Security solution using JBoss EAP 7 and its JBossWS version (with CXF). This reference was very helpful:
https://docs.jboss.org/author/display/JBWS/WS-Security
The solution is based on a WSDL file that contains a WS-SecurityPolicy.
Now I've been asked to implement a solution based on the same WSDL file, but using JBoss EAP 6.3.
JBoss EAP 7 is the only version of JBoss EAP that I've worked with thus far. I would like to avoid re-inventing the wheel, so to speak, so I'm looking for a hopefully minimal set of configuration changes from the EAP 7 solution.
Does anyone have recommendations for doing this? I've struggled even to find documentation or tutorials, in part because I'm unclear about which version of WildFly, JBossWS, and JBossWS-CXF is included in a JBoss EAP 6.3 installation.
In order to find out which component have been integrated into every JBoss EAP version, open the following URL: https://access.redhat.com/articles/112673
You can check also The WS-Security introduction page on the CXF website