Hello,
I have the following configuration :
tomcat 5.5.25
axis 1.4
wss4j 1.5.3
JDK1.5
JKS and self signed certificates
I was able to secure the connection between my java client and the server by
using the following conguration :
SERVER WSDD
<service name="UploadCoverCreation" provider="java:RPC" attachment="NONE"
xmlns:ict="urn:dtos.client.ws.ic.axa.com">
<parameter name="allowedMethods" value="getVersion,invoke"/>
<parameter name="className" value="com.axa.ic.ws.UploadCoverCreationWS"/>
<requestFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
<parameter name="passwordCallbackClass"
value="com.ic.ws.helpers.PWCallback"/>
<parameter name="action" value="UsernameToken Encrypt"/>
<parameter name="decryptionPropFile" value="crypto_server.properties" />
</handler>
</requestFlow>
...
</service>
CRYPTO SERVER PROPERTIES
org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
org.apache.ws.security.crypto.merlin.keystore.type=jks
org.apache.ws.security.crypto.merlin.keystore.password=keystorepassword
org.apache.ws.security.crypto.merlin.keystore.alias=serverUser
org.apache.ws.security.crypto.merlin.alias.password=myserverpassword
org.apache.ws.security.crypto.merlin.file=serverkeystore.jks
CLIENT WSDD
<?xml version="1.0" encoding="UTF-8"?>
<deployment xmlns="http://xml.apache.org/axis/wsdd/";
xmlns:java="http://xml.apache.org/axis/wsdd/providers/java";>
<transport name="http"
pivot="java:org.apache.axis.transport.http.HTTPSender"/>
<globalConfiguration >
<requestFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
<parameter name="action" value="UsernameToken Encrypt"/>
<parameter name="passwordCallbackClass"
value="com.axa.ic.ws.client.helpers.PWCallback"/>
<parameter name="passwordType" value="PasswordText" />
<parameter name="addUTElement" value="Nonce Created" />
<parameter name="encryptionPropFile" value="crypto_client.properties"
/>
<parameter name="encryptionKeyIdentifier" value="X509KeyIdentifier" />
<parameter name="encryptionUser" value="serverUser" />
<parameter name="encryptionParts"
value="{Element}{http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd}UsernameToken";
/>
</handler>
</requestFlow>
</globalConfiguration >
</deployment>
The hard part comes now... I have to make this work with a .Net 1.1 client.
I understand the .net framework must use WSE but I'm unsure which version :
2.0 or 3.0 ?
I also know that I must use the Timestamp action for it to be compatible.
Beeing a complete newbie to .Net I looked for a sample or tutorial that
could fit to my project but could not find any. I'm especially confused
about certificates, which format should I use to be compatible on both
sides, and also about the policy file from the .net side that seems rather
complex.
So I was wondering if any of you had success with such configuration. Some
pointers or code samples would be greatly appreciated in order for me to
advance to interoperability.
Thank you,
Raphaël
--
View this message in context:
http://www.nabble.com/Adapting-my-%22Java-only%22-webservice-security-to-a-.net-client-tp16678577p16678577.html
Sent from the WSS4J mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
