You are viewing a plain text version of this content. The canonical link for it is here.
Posted to rampart-dev@ws.apache.org by na...@apache.org on 2008/06/26 07:27:32 UTC
svn commit: r671763 - /webservices/rampart/site/java/setting-up-sts.html
Author: nandana
Date: Wed Jun 25 22:27:32 2008
New Revision: 671763
URL: http://svn.apache.org/viewvc?rev=671763&view=rev
Log:
Giving Rampart site a new look :)
Added:
webservices/rampart/site/java/setting-up-sts.html
Added: webservices/rampart/site/java/setting-up-sts.html
URL: http://svn.apache.org/viewvc/webservices/rampart/site/java/setting-up-sts.html?rev=671763&view=auto
==============================================================================
--- webservices/rampart/site/java/setting-up-sts.html (added)
+++ webservices/rampart/site/java/setting-up-sts.html Wed Jun 25 22:27:32 2008
@@ -0,0 +1,303 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+
+
+
+
+
+
+
+
+
+<html>
+ <head>
+ <title>Apache Rampart -
+ Setting up a Security Token Service</title>
+ <style type="text/css" media="all">
+ @import url("./css/maven-base.css");
+ @import url("./css/maven-theme.css");
+ @import url("./css/site.css");
+ </style>
+ <link rel="stylesheet" href="./css/print.css" type="text/css" media="print" />
+ <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1" />
+ </head>
+ <body class="composite">
+ <div id="banner">
+ <a href="images/apache-rampart-logo.jpg" id="bannerLeft">
+
+ Apache Rampart
+
+ </a>
+ <a href="http://www.apache.org" id="bannerRight">
+
+ <img src="images/apache-rampart-banner.jpg" alt="" />
+
+ </a>
+ <div class="clear">
+ <hr/>
+ </div>
+ </div>
+ <div id="breadcrumbs">
+
+
+
+
+
+
+
+ <div class="xleft">
+ Last Published: 23 Jun 2008
+ </div>
+ <div class="xright"> <a href="../../">WebServices</a>
+ |
+ <a href="http://ws.apache.org/axis2">Axis2/Java</a>
+
+
+
+
+
+
+
+ </div>
+ <div class="clear">
+ <hr/>
+ </div>
+ </div>
+ <div id="leftColumn">
+ <div id="navcolumn">
+
+
+
+
+
+
+
+ <h5>Apache Rampart</h5>
+ <ul>
+
+ <li class="none">
+ <a href="index.html">Home</a>
+ </li>
+
+
+
+
+
+
+
+ <li class="expanded">
+ <a href="">Downloads</a>
+ <ul>
+
+ <li class="none">
+ <a href="download.html">Releases</a>
+ </li>
+
+ <li class="none">
+ <a href="source-repository.html">Source Code</a>
+ </li>
+ </ul>
+ </li>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ <li class="expanded">
+ <a href="">Documentation</a>
+ <ul>
+
+ <li class="none">
+ <a href="quick-start.html">Getting Started</a>
+ </li>
+
+ <li class="none">
+ <a href="samples.html">Samples</a>
+ </li>
+
+ <li class="none">
+ <a href="http://wiki.apache.org/ws/FrontPage/Rampart/FAQ">FAQ</a>
+ </li>
+
+ <li class="none">
+ <a href="rampartconfig-guide.html">Rampart Configuration</a>
+ </li>
+
+ <li class="none">
+ <strong>STS Configuration</strong>
+ </li>
+
+ <li class="none">
+ <a href="developer-guide.html">Developer Guide</a>
+ </li>
+
+ <li class="none">
+ <a href="siteHowTo.html">Build the Site</a>
+ </li>
+ </ul>
+ </li>
+
+
+
+
+
+
+
+
+
+ <li class="expanded">
+ <a href="">Resources</a>
+ <ul>
+
+ <li class="none">
+ <a href="articles.html">Articles</a>
+ </li>
+
+ <li class="none">
+ <a href="specifications.html">Specifications</a>
+ </li>
+
+ <li class="none">
+ <a href="apidocs/index.html">Online Javadocs</a>
+ </li>
+ </ul>
+ </li>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ <li class="expanded">
+ <a href="">Project Information</a>
+ <ul>
+
+ <li class="none">
+ <a href="team-list.html">Project Team</a>
+ </li>
+
+ <li class="none">
+ <a href="http://issues.apache.org/jira/browse/Rampart">Issue Tracking</a>
+ </li>
+
+ <li class="none">
+ <a href="mail-lists.html">Mailing Lists</a>
+ </li>
+
+ <li class="none">
+ <a href="http://svn.apache.org/viewcvs.cgi/webservices/rampart/trunk/?root=Apache-SVN">Source Code</a>
+ </li>
+
+ <li class="none">
+ <a href="dependencies.html">Dependencies</a>
+ </li>
+
+ <li class="none">
+ <a href="http://www.apache.org/licenses/LICENSE-2.0.html">License</a>
+ </li>
+ </ul>
+ </li>
+ </ul>
+ <a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy">
+ <img alt="Built by Maven" src="./images/logos/maven-feather.png"></img>
+ </a>
+
+
+
+
+
+
+
+ </div>
+ </div>
+ <div id="bodyColumn">
+ <div id="contentBox">
+
+
+ <head>
+ </head>
+
+ <h1>Setting up a Security Token Service</h1>
+ <h3>Setting up a Security Token Service</h3>
+ <p>Security Token Service can be set up as per WS-Trust specification using Rampart. The default security token service shipped with the rampart distribution is contained in the rampart-trust.mar module. It can issue SCT tokens and SAML tokens. Sample05 contains a client that connects to the default STS and obtain a SAML token. The services.xml in the sample contains "saml-issuer-config" parameter that is used to configure the default SAML issuer.</p>
+ <strong>STS with a custom issuer</strong>
+ <p>First the default rampart.mar has to be removed from the modules. Then write you own issuer implementing the <code>"org.apache.rahas.TokenIssuer"</code> interface. Let's say that your issuer is <code>"org.custom.MyIssuer"</code>. Then create a Axis2 service archive with the following in the services.xml. Drop the archive into the repository and you have a STS with a CustomToken issuer.</p>
+
+ <pre>
+
+<module ref="rampart" />
+
+<operation name="IssueToken"
+ mep="http://www.w3.org/2006/01/wsdl/in-out">
+ <messageReceiver
+ class="org.apache.rahas.STSMessageReceiver"/>
+
+ <!-- Action mapping to accept RST requests -->
+ <actionMapping>http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT</actionMapping>
+ <actionMapping>http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue</actionMapping>
+ <actionMapping>http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Renew</actionMapping>
+ <actionMapping>http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Cancel</actionMapping>
+ <actionMapping>http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT/Cancel</actionMapping>
+ <actionMapping>http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Validate</actionMapping>
+
+ <parameter name="token-dispatcher-configuration">
+ <token-dispatcher-configuration>
+ <!-- Issuers. You may have many issuers. -->
+ <issuer class="org.custom.MyIssuer" default="true">
+ <configuration
+ type="parameter">saml-issuer-config</configuration>
+ <tokenType>http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1</tokenType>
+ </issuer>
+ </token-dispatcher-configuration>
+ </parameter>
+
+</operation>
+
+</pre>
+
+
+ </div>
+ </div>
+ <div class="clear">
+ <hr/>
+ </div>
+ <div id="footer">
+ <div class="xright">©
+ 2005-2008
+
+ Apache Software Foundation
+
+
+
+
+
+
+
+ </div>
+ <div class="clear">
+ <hr/>
+ </div>
+ </div>
+ </body>
+</html>