Hello,
I'm trying to extend the time to live of all inbound SOAP messages to my web
service with UsernameToken in the security header from 5 minutes to at least
10. When a SOAP message arrives with a timestamp greater than 5 minutes in the
past, the service throws an exception "The Message has expired". I want to
extend that time from five minutes to at least 10, or any other value that we
agree to internally. I need to change the processing of all inbound tokens to
allow for more time before the message expires.
In my research so far I have found out that maybe I need to change the
parameter "ws-security.usernametoken.timeToLive", and maybe also
"ws-security.usernametoken.futureTimeToLive".
But I don't know which file I need to change in my project. Can that be changed
at all? If it can be changed, what is the actual parameter that I need to
change? Which configuration file do I need to change? What do I need to write
exactly to change that parameter?
The project uses WS-SecurityPolicy-based policy, the option with UsernameToken
with timestamp, nonce and password hash. The web-service is hosted on
wildfly-10.0.0.Final web server.
This is a list of configuration files in my project, and examples of what I
tried so far:
- server.properties (main/java folder)
- Tried using : "org.apache.cxf.ws.security.usernametoken.timeToLive=600"
- server-endpoint-config (WEB-INF folder)
- Tried using :
"
<property>
<property-name>ws-security.usernametoken.timeToLive</property-name>
<property-value>600</property-value>
</property>
"
- Service.wsdl (WEB-INF folder)
- Schema.xsd (WEB-INF folder)
- jboss-deployment-structure.xml (WEB-INF folder)
- web.xml (WEB-INF folder)
- module.xml (wildfly/modules folder)
- service.properties (wildfly/modules folder)
If anyone can help me with this issue, I would be really grateful.
Elvedin
