Hi Ruchith,
I've been trying to do some similar things with Rampart, and running
into a few unknowns. First off, how do I set the configuration to do
multiple steps in the outflow and inflow? In my case, I need to sign the
outgoing message with my local private key, then encrypt with the
server's public key (from the certificate in my keystore).
Secondly, how do I control the type of SecurityTokenReference used in
the message? By default I get an X509Data with X509IssuerSerial; I'd
prefer to use a KeyIdentifier instead. I tried:
ofc.setSignatureKeyIdentifier(WSSHandlerConstants.X509_KEY_IDENTIFIER);
But this didn't appear to have any effect.
- Dennis
Dennis M. Sosnoski
SOA, Web Services, and XML
Training and Consulting
http://www.sosnoski.com - http://www.sosnoski.co.nz
Seattle, WA +1-425-296-6194 - Wellington, NZ +64-4-298-6117
Ruchith Fernando wrote:
Please add the axis2-security-SNAPSHOT.jar [1] into your classpath to
access the OutflowConfiguration/InflowConfiguration classes.
Latest rampart-SNAPSHOT.mar is available here : [2].
Thanks,
Ruchith
[1]
http://people.apache.org/repository/axis2/jars/axis2-security-SNAPSHOT.jar
[2] http://people.apache.org/repository/axis2/mars/rampart-SNAPSHOT.mar
On 8/10/06, Brecht Yperman <[EMAIL PROTECTED]> wrote:
Ok,
Apparently I'm shit at using Axis2, no progress last two days...
Where can I find the latest rampart.mar-build?
Can I rename the .mar-file to .jar and add it to my build path (to use
the OutflowConfiguration class)?
Thanks,
Brecht
-----Original Message-----
From: Ruchith Fernando [mailto:[EMAIL PROTECTED]
Sent: donderdag 10 augustus 2006 10:02
To: axis-user@ws.apache.org
Subject: Re: [Axis2] Configure Rampart dynamically
Hi Brecht,
Yes it is possible. Please see here:
http://marc.theaimsgroup.com/?l=axis-user&m=115517624610919&w=2
Thanks,
Ruchith
On 8/10/06, Brecht Yperman <[EMAIL PROTECTED]> wrote:
>
>
>
>
> Hi,
>
>
>
> how do I configure Rampart dynamically?
>
>
>
> I tried something like this, but it does not work...
>
>
>
> private void configureSecurity(ServiceClient client) throws AxisFault
{
>
> if (true /*security == on*/) {
>
> Parameter parm = new Parameter();
>
> parm.setName("OutflowSecurity");
>
>
>
> OMFactory fact = OMAbstractFactory.getOMFactory();
>
>
>
> OMNamespace emptyNS = fact.createOMNamespace(null,
"");
>
> OMElement actionEl = fact.createOMElement("action",
> emptyNS);
>
>
>
> OMElement itemsEl = fact.createOMElement("items",
> emptyNS);
>
> itemsEl.setText("UsernameToken");
>
> actionEl.addChild(itemsEl);
>
>
>
> OMElement userEl = fact.createOMElement("user",
emptyNS);
>
> userEl.setText("bob");
>
> actionEl.addChild(userEl);
>
>
>
> OMElement pwCbEl =
> fact.createOMElement("passwordCallbackClass", emptyNS);
>
> pwCbEl.setText("CallbackHandler");
>
> actionEl.addChild(pwCbEl);
>
>
>
> parm.setParameterElement(actionEl);
>
>
>
> client.engageModule(new QName("rampart-1.0"));
>
> }
>
> }
>
>
>
> Thanks,
>
> Brecht
>
>
>
> Invenso - The "Integration Software" specialists.
> _____________________________________________
>
> Brecht Yperman
> Development team
>
> Direct: +32 (0)3 780 30 05
> Email: [EMAIL PROTECTED]
>
> INVENSO bvba
> Industriepark-West 75
> 9100 Sint-Niklaas
> Belgium - Europe
>
> Phone: +32 (0)3 780 30 02
> Fax: +32 (0)3 780 30 03
> Email: [EMAIL PROTECTED]
> Website: www.invenso.com
>
> "E-mail disclaimer: This e-mail, and any attachments thereto, is
intended
> only for use by the addressee(s) named herein and may contain legally
> privileged and/or confidential information. If you are not the
intended
> recipient, please note that any review, dissemination, disclosure,
> alteration, printing, copying or transmission of this e-mail and/or
any file
> transmitted with it, is strictly prohibited and may be unlawful. If
you have
> received this e-mail by mistake, please immediately notify the sender
and
> permanently delete the original as well as any copy of any e-mail and
any
> printout thereof."
>
>
--
www.ruchith.org
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]