You are viewing a plain text version of this content. The canonical link for it is here.

Posted to wss4j-dev@ws.apache.org by me...@gmx.de on 2008/01/23 14:06:32 UTC

Supports WSS4J http://schemas.xmlsoap.org/ws/2002/04/secext ?

Hi, 

I am searching for a possibility to use WSS4J on client side to consume a web service, which only supports http://schemas.xmlsoap.org/ws/2002/04/secext.

The server side web service expect the following header for usernameToken authentication:

   <soapenv:Header>
<wsse:Security xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext">
   <wsse:UsernameToken>
        <wsse:Username>user</wsse:Username> 
        <wsse:Password Type="wsse:PasswordText">password</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>  


My existing client with Axis 1.4 and WSS4J 1.5.3 looks like this:

	<soapenv:Header>
		<wsse:Security
			xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
			<wsse:UsernameToken
				xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
				wsu:Id="UsernameToken-18724539">
				<wsse:Username>user</wsse:Username>
				<wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">
					password
				</wsse:Password>
			</wsse:UsernameToken>
		</wsse:Security>
	</soapenv:Header>

Exists in WSS4J a possibility / switch to supports older versions of the WS-Security? 
What other alternative are possible?


Best regards
Tobi

-- 
Psssst! Schon vom neuen GMX MultiMessenger gehört?
Der kann`s mit allen: http://www.gmx.net/de/go/multimessenger

---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org