Hello! I successfully made a secure dotnet client using the dotnet. 2.0 and Web services enhancement 3.0 (WSE 3.0) talking to axis 1.4 and wss4j 1.5.3 [1] with *x509 v3 certificates*.
See this page which helps me as a start [2]! There is the equivalent file of client.wsdd in the dotnet framework nammed as web.config. In my project I called it [3] wse3PolicyCache.config. The name does not matter... Happy Axis and Happy coding! José Ferreiro [1]- http://magnot.blogspot.com/2008/04/secure-web-services-interoperability.html [2]- http://erlend.oftedal.no/blog/?blogid=12 [3]- http://bp1.blogger.com/_SFCs1WYrqtY/SBXPETktd3I/AAAAAAAAAXE/nNI7mNpQS6c/s1600-h/visualStudio.png [4]- http://bp0.blogger.com/_SFCs1WYrqtY/SBXILDktdzI/AAAAAAAAAWk/9wqequ_9vNk/s1600-h/pfx-pkcs12-1.PNG On Fri, May 29, 2009 at 6:39 PM, Wishing Carebear < wishing.careb...@gmail.com> wrote: > Hello: > I'm using wss4j with Apache Axis 1.4 (no Axis2). Wondering if someone could > provide what should be the equivalent client.wsdd file for the following > policy file. I have tried posting this in wss4j newsgroup but could not get > any response. Hoping some one could give me some pointers. Thanks. > > <policies xmlns="http://schemas.microsoft.com/wse/2005/06/policy";> > <extensions> > <extension name="usernameForCertificateSecurity" > type="Microsoft.Web.Services3.Design.UsernameForCertificateAssertion, > Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral, > PublicKeyToken=31bf3856ad364e35" /> > <extension name="x509" > type="Microsoft.Web.Services3.Design.X509TokenProvider, > Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral, > PublicKeyToken=31bf3856ad364e35" /> > <extension name="requireActionHeader" > type="Microsoft.Web.Services3.Design.RequireActionHeaderAssertion, > Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral, > PublicKeyToken=31bf3856ad364e35" /> > </extensions> > <policy name="usernameTokenSecurity"> > <usernameForCertificateSecurity establishSecurityContext="true" > renewExpiredSecurityContext="true" requireSignatureConfirmation="false" > messageProtectionOrder="SignBeforeEncrypt" requireDerivedKeys="true" > ttlInSeconds="300"> > <serviceToken> > <x509 storeLocation="LocalMachine" storeName="AddressBook" > findValue="CN=TMPDMDevelopment" findType="FindBySubjectDistinguishedName" /> > </serviceToken> > <protection> > <request signatureOptions="IncludeAddressing, IncludeTimestamp, > IncludeSoapBody" encryptBody="true" /> > <response signatureOptions="IncludeAddressing, IncludeTimestamp, > IncludeSoapBody" encryptBody="true" /> > <fault signatureOptions="IncludeAddressing, IncludeTimestamp, > IncludeSoapBody" encryptBody="false" /> > </protection> > </usernameForCertificateSecurity> > <requireActionHeader /> > </policy> > </policies> >
