Re: [Axis2] Configure Rampart dynamically

Thu, 17 Aug 2006 05:30:07 -0700 

Hi Ruchith,
I've been trying to do some similar things with Rampart, and running into a few unknowns. First off, how do I set the configuration to do multiple steps in the outflow and inflow? In my case, I need to sign the outgoing message with my local private key, then encrypt with the server's public key (from the certificate in my keystore). 


Secondly, how do I control the type of SecurityTokenReference used in 
the message? By default I get an X509Data with X509IssuerSerial; I'd 
prefer to use a KeyIdentifier instead. I tried:


 ofc.setSignatureKeyIdentifier(WSSHandlerConstants.X509_KEY_IDENTIFIER);

But this didn't appear to have any effect.

 - Dennis

Dennis M. Sosnoski
SOA, Web Services, and XML
Training and Consulting
http://www.sosnoski.com - http://www.sosnoski.co.nz
Seattle, WA +1-425-296-6194 - Wellington, NZ +64-4-298-6117



Ruchith Fernando wrote:

Please add the axis2-security-SNAPSHOT.jar [1] into your classpath to
access the OutflowConfiguration/InflowConfiguration classes.

Latest rampart-SNAPSHOT.mar is available here : [2].

Thanks,
Ruchith


[1] 
http://people.apache.org/repository/axis2/jars/axis2-security-SNAPSHOT.jar 


[2] http://people.apache.org/repository/axis2/mars/rampart-SNAPSHOT.mar

On 8/10/06, Brecht Yperman <[EMAIL PROTECTED]> wrote:

Ok,

Apparently I'm shit at using Axis2, no progress last two days...

Where can I find the latest rampart.mar-build?
Can I rename the .mar-file to .jar and add it to my build path (to use
the OutflowConfiguration class)?

Thanks,
Brecht

-----Original Message-----
From: Ruchith Fernando [mailto:[EMAIL PROTECTED]
Sent: donderdag 10 augustus 2006 10:02
To: axis-user@ws.apache.org
Subject: Re: [Axis2] Configure Rampart dynamically

Hi Brecht,

Yes it is possible. Please see here:
http://marc.theaimsgroup.com/?l=axis-user&m=115517624610919&w=2

Thanks,
Ruchith

On 8/10/06, Brecht Yperman <[EMAIL PROTECTED]> wrote:
>
>
>
>
> Hi,
>
>
>
> how do I configure Rampart dynamically?
>
>
>
> I tried something like this, but it does not work...
>
>
>
> private void configureSecurity(ServiceClient client) throws AxisFault
{
>
>             if (true /*security == on*/) {
>
>                   Parameter parm = new Parameter();
>
>                   parm.setName("OutflowSecurity");
>
>
>
>                   OMFactory fact = OMAbstractFactory.getOMFactory();
>
>
>
>                   OMNamespace emptyNS = fact.createOMNamespace(null,
"");
>
>                   OMElement actionEl = fact.createOMElement("action",
> emptyNS);
>
>
>
>                   OMElement itemsEl = fact.createOMElement("items",
> emptyNS);
>
>                   itemsEl.setText("UsernameToken");
>
>                   actionEl.addChild(itemsEl);
>
>
>
>                   OMElement userEl = fact.createOMElement("user",
emptyNS);
>
>                   userEl.setText("bob");
>
>                   actionEl.addChild(userEl);
>
>
>
>                   OMElement pwCbEl =
> fact.createOMElement("passwordCallbackClass", emptyNS);
>
>                   pwCbEl.setText("CallbackHandler");
>
>                   actionEl.addChild(pwCbEl);
>
>
>
>                   parm.setParameterElement(actionEl);
>
>
>
>                   client.engageModule(new QName("rampart-1.0"));
>
>             }
>
>       }
>
>
>
> Thanks,
>
> Brecht
>
>
>
> Invenso - The "Integration Software" specialists.
>  _____________________________________________
>
> Brecht Yperman
>  Development team
>
>  Direct: +32 (0)3 780 30 05
>  Email: [EMAIL PROTECTED]
>
> INVENSO bvba
>  Industriepark-West 75
>  9100 Sint-Niklaas
>  Belgium - Europe
>
>  Phone: +32 (0)3 780 30 02
>  Fax: +32 (0)3 780 30 03
>  Email: [EMAIL PROTECTED]
>  Website: www.invenso.com
>
> "E-mail disclaimer: This e-mail, and any attachments thereto, is
intended
> only for use by the addressee(s) named herein and may contain legally
> privileged and/or confidential information. If you are not the
intended
> recipient, please note that any review, dissemination, disclosure,
> alteration, printing, copying or transmission of this e-mail and/or
any file
> transmitted with it, is strictly prohibited and may be unlawful. If
you have
> received this e-mail by mistake, please immediately notify the sender
and
> permanently delete the original as well as any copy of any e-mail and
any
> printout thereof."
>
>


--
www.ruchith.org

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]







---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]























					Reply via email to