You are viewing a plain text version of this content. The canonical link for it is here.

Posted to rampart-dev@ws.apache.org by ma...@yellowworld.ch on 2007/09/14 18:05:44 UTC

Question regarding UsernameToken and Nonce Element

Hi there,

Is there a way to force Rampart to put the <wsse:Nonce> and <wsu:Created> elements within wsse:UsernameToken even if only PasswordType=PasswordText is set?

Many thanks for your support.

Regards,

Mario Stettler

yellowworld AG
Zentweg 25
Postfach
3030 Bern

Tel. Nr.:		+41 (0) 58 338 73 81
Fax Nr.:		+41 (0) 58 338 65 35
E-Mail:		mario.stettler@yellowworld.ch
Internet:		http://www.yellowworld.ch

Wir betreiben für Sie Ihre Billing- und Logistikprozesse.

Re: Question regarding UsernameToken and Nonce Element

Posted by Ruchith Fernando <ru...@apache.org>.

Hi,

This is possible *only* is you use Rampart-1.0 style configuration.

Please try adding "addUTElements" element into OutflowSecurity parameter
as shown below:

    <parameter name="OutflowSecurity">
      <action>
        <items>UsernameToken</items>
        <user>bob</user>

<passwordCallbackClass>org.apache.rampart.samples.sample03.PWCBHandler</passwordCallbackClass>
        <passwordType>PasswordText</passwordType>
        <addUTElements>Nonce</addUTElements>
      </action>
    </parameter>

Thanks,
Ruchith

mario.stettler@yellowworld.ch wrote:
> Hi there,
> 
> Is there a way to force Rampart to put the <wsse:Nonce> and <wsu:Created> elements within wsse:UsernameToken even if only PasswordType=PasswordText is set?
> 
> Many thanks for your support.
> 
> Regards,
> 
> Mario Stettler
> 
> yellowworld AG
> Zentweg 25
> Postfach
> 3030 Bern
> 
> Tel. Nr.:		+41 (0) 58 338 73 81
> Fax Nr.:		+41 (0) 58 338 65 35
> E-Mail:		mario.stettler@yellowworld.ch
> Internet:		http://www.yellowworld.ch
> 
> Wir betreiben für Sie Ihre Billing- und Logistikprozesse.
> 
> 
>