> I would like to know how to start writing secure web-services using
> WSS4J, without using Axis as a SOAP engine. The only information and
> tutorial I found were about using Axis. We would like to use SAML
> tokens with WS-Security.
Good place to start are SAML unit tests.
Look for TestWSSecurityST1, TestWSSecurityST2 and TestWSSecurityST3
and the classes SAMLIssuer and WSSAddSAMLToken.
Both SOAP profile scenarios are convered (sender-vouches and
holder-of-key).
Axis is present in those tests too as a validation/callback mechanism
however the SAML tokens are created and attached to messages
using wss4j only.
Regards,
emil
Title: RE: Pointers to start with WSS4J
- Pointers to start with WSS4J Jean-Noel Colin
- Emil Marceta
