Hi Ruchith,
I've been trying to do some similar things with Rampart, and running
into a few unknowns. First off, how do I set the configuration to do
multiple steps in the outflow and inflow? In my case, I need to sign the
outgoing message with my local private key, then encrypt with the
server's public key (from the certificate in my keystore).
Secondly, how do I control the type of SecurityTokenReference used in
the message? By default I get an X509Data with X509IssuerSerial; I'd
prefer to use a KeyIdentifier instead. I tried:
ofc.setSignatureKeyIdentifier(WSSHandlerConstants.X509_KEY_IDENTIFIER);
But this didn't appear to have any effect.
- Dennis
Dennis M. Sosnoski
SOA, Web Services, and XML
Training and Consulting
http://www.sosnoski.com - http://www.sosnoski.co.nz
Seattle, WA +1-425-296-6194 - Wellington, NZ +64-4-298-6117
Ruchith Fernando wrote:
> Please add the axis2-security-SNAPSHOT.jar [1] into your classpath to
> access the OutflowConfiguration/InflowConfiguration classes.
>
> Latest rampart-SNAPSHOT.mar is available here : [2].
>
> Thanks,
> Ruchith
>
> [1]
>
http://people.apache.org/repository/axis2/jars/axis2-security-SNAPSHOT.jar
>
> [2]
http://people.apache.org/repository/axis2/mars/rampart-SNAPSHOT.mar
>
> On 8/10/06, Brecht Yperman <[EMAIL PROTECTED]> wrote:
>> Ok,
>>
>> Apparently I'm shit at using Axis2, no progress last two days...
>>
>> Where can I find the latest rampart.mar-build?
>> Can I rename the .mar-file to .jar and add it to my build path (to
use
>> the OutflowConfiguration class)?
>>
>> Thanks,
>> Brecht
>>
>> -----Original Message-----
>> From: Ruchith Fernando [mailto:[EMAIL PROTECTED]
>> Sent: donderdag 10 augustus 2006 10:02
>> To: axis-user@ws.apache.org
>> Subject: Re: [Axis2] Configure Rampart dynamically
>>
>> Hi Brecht,
>>
>> Yes it is possible. Please see here:
>> http://marc.theaimsgroup.com/?l=axis-user&m=115517624610919&w=2
>>
>> Thanks,
>> Ruchith
>>
>> On 8/10/06, Brecht Yperman <[EMAIL PROTECTED]> wrote:
>> >
>> >
>> >
>> >
>> > Hi,
>> >
>> >
>> >
>> > how do I configure Rampart dynamically?
>> >
>> >
>> >
>> > I tried something like this, but it does not work...
>> >
>> >
>> >
>> > private void configureSecurity(ServiceClient client) throws
AxisFault
>> {
>> >
>> > if (true /*security == on*/) {
>> >
>> > Parameter parm = new Parameter();
>> >
>> > parm.setName("OutflowSecurity");
>> >
>> >
>> >
>> > OMFactory fact =
OMAbstractFactory.getOMFactory();
>> >
>> >
>> >
>> > OMNamespace emptyNS =
fact.createOMNamespace(null,
>> "");
>> >
>> > OMElement actionEl =
fact.createOMElement("action",
>> > emptyNS);
>> >
>> >
>> >
>> > OMElement itemsEl = fact.createOMElement("items",
>> > emptyNS);
>> >
>> > itemsEl.setText("UsernameToken");
>> >
>> > actionEl.addChild(itemsEl);
>> >
>> >
>> >
>> > OMElement userEl = fact.createOMElement("user",
>> emptyNS);
>> >
>> > userEl.setText("bob");
>> >
>> > actionEl.addChild(userEl);
>> >
>> >
>> >
>> > OMElement pwCbEl =
>> > fact.createOMElement("passwordCallbackClass", emptyNS);
>> >
>> > pwCbEl.setText("CallbackHandler");
>> >
>> > actionEl.addChild(pwCbEl);
>> >
>> >
>> >
>> > parm.setParameterElement(actionEl);
>> >
>> >
>> >
>> > client.engageModule(new QName("rampart-1.0"));
>> >
>> > }
>> >
>> > }
>> >
>> >
>> >
>> > Thanks,
>> >
>> > Brecht
>> >
>> >
>> >
>> > Invenso - The "Integration Software" specialists.
>> > _____________________________________________
>> >
>> > Brecht Yperman
>> > Development team
>> >
>> > Direct: +32 (0)3 780 30 05
>> > Email: [EMAIL PROTECTED]
>> >
>> > INVENSO bvba
>> > Industriepark-West 75
>> > 9100 Sint-Niklaas
>> > Belgium - Europe
>> >
>> > Phone: +32 (0)3 780 30 02
>> > Fax: +32 (0)3 780 30 03
>> > Email: [EMAIL PROTECTED]
>> > Website: www.invenso.com
>> >
>> > "E-mail disclaimer: This e-mail, and any attachments thereto, is
>> intended
>> > only for use by the addressee(s) named herein and may contain
legally
>> > privileged and/or confidential information. If you are not the
>> intended
>> > recipient, please note that any review, dissemination, disclosure,
>> > alteration, printing, copying or transmission of this e-mail and/or
>> any file
>> > transmitted with it, is strictly prohibited and may be unlawful. If
>> you have
>> > received this e-mail by mistake, please immediately notify the
sender
>> and
>> > permanently delete the original as well as any copy of any
e-mail and
>> any
>> > printout thereof."
>> >
>> >
>>
>>
>> --
>> www.ruchith.org
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: [EMAIL PROTECTED]
>> For additional commands, e-mail: [EMAIL PROTECTED]
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: [EMAIL PROTECTED]
>> For additional commands, e-mail: [EMAIL PROTECTED]
>>
>>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]