Author: prabath Date: Fri Dec 19 10:51:46 2008 New Revision: 27438 URL: http://wso2.org/svn/browse/wso2?view=rev&revision=27438
Log: sts sample service policy Modified: trunk/wsas/java/modules/samples/sts-sample/conf/service.policy.xml Modified: trunk/wsas/java/modules/samples/sts-sample/conf/service.policy.xml URL: http://wso2.org/svn/browse/wso2/trunk/wsas/java/modules/samples/sts-sample/conf/service.policy.xml?rev=27438&r1=27437&r2=27438&view=diff ============================================================================== --- trunk/wsas/java/modules/samples/sts-sample/conf/service.policy.xml (original) +++ trunk/wsas/java/modules/samples/sts-sample/conf/service.policy.xml Fri Dec 19 10:51:46 2008 @@ -1,86 +1,121 @@ -<!-- - ~ Copyright 2005-2007 WSO2, Inc. (http://wso2.com) - ~ - ~ Licensed under the Apache License, Version 2.0 (the "License"); - ~ you may not use this file except in compliance with the License. - ~ You may obtain a copy of the License at - ~ - ~ http://www.apache.org/licenses/LICENSE-2.0 - ~ - ~ Unless required by applicable law or agreed to in writing, software - ~ distributed under the License is distributed on an "AS IS" BASIS, - ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - ~ See the License for the specific language governing permissions and - ~ limitations under the License. - --> - -<wsp:Policy wsu:Id="scenario-12" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"; xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy";> -<wsp:ExactlyOne> - <wsp:All> - <sp:SymmetricBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> - <wsp:Policy> - <sp:ProtectionToken> - <wsp:Policy> - <sp:IssuedToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient";> - <Issuer xmlns="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> - <Address xmlns="http://www.w3.org/2005/08/addressing";>http://foo.bar/we/don/t/process/this/yet</Address> - </Issuer> - <sp:RequestSecurityTokenTemplate> - <t:TokenType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>urn:oasis:names:tc:SAML:1.0:assertion</t:TokenType> - <t:KeyType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>http://schemas.xmlsoap.org/ws/2005/02/trust/SymmetricKey</t:KeyType> - <t:KeySize xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>256</t:KeySize> - </sp:RequestSecurityTokenTemplate> - <wsp:Policy> - <sp:RequireInternalReference/> - </wsp:Policy> - </sp:IssuedToken> - </wsp:Policy> - </sp:ProtectionToken> - <sp:AlgorithmSuite> - <wsp:Policy> - <sp:Basic256/> - </wsp:Policy> - </sp:AlgorithmSuite> - <sp:Layout> - <wsp:Policy> - <sp:Strict/> - </wsp:Policy> - </sp:Layout> - <sp:IncludeTimestamp/> - <sp:EncryptSignature/> - <sp:OnlySignEntireHeadersAndBody/> - </wsp:Policy> - </sp:SymmetricBinding> - <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> - <wsp:Policy> - <sp:MustSupportRefKeyIdentifier/> - <sp:MustSupportRefIssuerSerial/> - <sp:MustSupportRefThumbprint/> - <sp:MustSupportRefEncryptedKey/> - </wsp:Policy> - </sp:Wss11> - <sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> - <wsp:Policy> - <sp:MustSupportIssuedTokens/> - <sp:RequireClientEntropy/> - <sp:RequireServerEntropy/> - </wsp:Policy> - </sp:Trust10> - <sp:SignedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> - <sp:Body/> - <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/> - <sp:Header Name="From" Namespace="http://www.w3.org/2005/08/addressing"/> - <sp:Header Name="FaultTo" Namespace="http://www.w3.org/2005/08/addressing"/> - <sp:Header Name="ReplyTo" Namespace="http://www.w3.org/2005/08/addressing"/> - <sp:Header Name="MessageID" Namespace="http://www.w3.org/2005/08/addressing"/> - <sp:Header Name="RelatesTo" Namespace="http://www.w3.org/2005/08/addressing"/> - <sp:Header Name="Action" Namespace="http://www.w3.org/2005/08/addressing"/> - </sp:SignedParts> - <sp:EncryptedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> - <sp:Body/> - </sp:EncryptedParts> - </wsp:All> -</wsp:ExactlyOne> -</wsp:Policy> - - +<?xml version="1.0" encoding="UTF-8"?> + +<wsp:Policy wsu:Id="SecConSgnEncr" + xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"; + xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd";> + <wsp:ExactlyOne> + <wsp:All> + <sp:SymmetricBinding + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <wsp:Policy> + <sp:ProtectionToken> + <wsp:Policy> + <sp:SecureConversationToken + sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient";> + <wsp:Policy> + <sp:BootstrapPolicy> + <wsp:Policy + xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy";> + <sp:AsymmetricBinding + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <wsp:Policy> + <sp:InitiatorToken> + <wsp:Policy> + <sp:X509Token + sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never";> + <wsp:Policy> + <sp:RequireThumbprintReference /> + <sp:WssX509V3Token10 /> + </wsp:Policy> + </sp:X509Token> + </wsp:Policy> + </sp:InitiatorToken> + <sp:RecipientToken> + <wsp:Policy> + <sp:X509Token + sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never";> + <wsp:Policy> + <sp:RequireThumbprintReference /> + <sp:WssX509V3Token10 /> + </wsp:Policy> + </sp:X509Token> + </wsp:Policy> + </sp:RecipientToken> + <sp:AlgorithmSuite + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <wsp:Policy> + <sp:Basic256 /> + </wsp:Policy> + </sp:AlgorithmSuite> + <sp:Layout> + <wsp:Policy> + <sp:Strict /> + </wsp:Policy> + </sp:Layout> + <sp:IncludeTimestamp /> + <sp:OnlySignEntireHeadersAndBody /> + </wsp:Policy> + </sp:AsymmetricBinding> + <sp:Wss10 + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <sp:Policy> + <sp:MustSupportRefKeyIdentifier /> + <sp:MustSupportRefIssuerSerial /> + </sp:Policy> + </sp:Wss10> + <sp:SignedParts + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <sp:Body /> + </sp:SignedParts> + <sp:EncryptedParts + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <sp:Body /> + </sp:EncryptedParts> + </wsp:Policy> + </sp:BootstrapPolicy> + </wsp:Policy> + </sp:SecureConversationToken> + </wsp:Policy> + </sp:ProtectionToken> + <sp:AlgorithmSuite + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <wsp:Policy> + <sp:Basic256 /> + </wsp:Policy> + </sp:AlgorithmSuite> + <sp:Layout> + <wsp:Policy> + <sp:Lax /> + </wsp:Policy> + </sp:Layout> + <sp:IncludeTimestamp /> + <sp:OnlySignEntireHeadersAndBody /> + </wsp:Policy> + </sp:SymmetricBinding> + <sp:SignedParts + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <sp:Body /> + </sp:SignedParts> + <sp:EncryptedParts + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <sp:Body /> + </sp:EncryptedParts> + <sp:Wss11 + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <sp:Policy> + <sp:MustSupportRefKeyIdentifier /> + <sp:MustSupportRefIssuerSerial /> + <sp:MustSupportRefThumbprint /> + </sp:Policy> + </sp:Wss11> + <sp:Trust10 + xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> + <wsp:Policy> + <sp:RequireClientEntropy /> + <sp:RequireServerEntropy /> + <sp:MustSupportIssuedTokens /> + </wsp:Policy> + </sp:Trust10> + </wsp:All> + </wsp:ExactlyOne> +</wsp:Policy> \ No newline at end of file _______________________________________________ Wsas-java-dev mailing list [email protected] https://wso2.org/cgi-bin/mailman/listinfo/wsas-java-dev
