You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fx-dev@ws.apache.org by Sharanka Perera <sh...@opensource.lk> on 2004/06/23 00:27:37 UTC
Initial drafts on the WSS4C architecture
Hi all,
I've attached a document that outlines the initial draft architectural design overview on WSS4C. It's not very comprehensive right now, but we're taking one step at a time. Lots of research work happening concurrently with the design work makes it slow going.
I've elaborated on both diagrams below:
Diagram 1:
This gives a general overall view of the WSS4C project, and how it would plug in to a SOAP Server, such as Axis C++. In this scenario, the wsdd file shown in the diagram would contain the necessary configuration details and/or instructions for SOAP message handling. During the course of SOAP message processing, the SOAP Engine will pass the partially processed message to the security handler (one of possibly many included in the wsdd file). On the client-side, the client-side security handler would add all the necessary security headers, then get the body of the SOAP message, perform all necessary actions and give the secured message back to the SOAP Engine, and where it will be eventually transmitted to its counterpart across a network (in this case the Internet).
On the receiving end, the Transport Listener (for example, the Apache Web Server) will receive the SOAP message and pass it on to the SOAP Engine. After some initial processing, the Engine will call the security handler. The server-side handler would then perform a reverse operation as described by the wsdd file, i.e. decrypt any portion of the message intended for a particular web service, validate signatures, validate tokens etc. before passing it (the message) back to the SOAP Engine. The required functionality for the handlers are provided by the WSS4C API.
Diagram 2:
This diagram summarizes the list of functions the WSS4C API is expected to have eventually. These are: XML signature handling, XML encryption and Tokenization.
As always, any feedback would be much appreciated.
With regards,
Sharanka
Re: Initial drafts on the WSS4C architecture
Posted by Davanum Srinivas <da...@gmail.com>.
looks good.
-- dims
----- Original Message -----
From: Sharanka Perera <sh...@opensource.lk>
Date: Wed, 23 Jun 2004 04:27:37 +0600
Subject: Initial drafts on the WSS4C architecture
To: fx-dev@ws.apache.org
Hi all,
I've attached a document that outlines the
initial draft architectural design overview on WSS4C. It's not very
comprehensive right now, but we're taking one step at a time. Lots of research
work happening concurrently with the design work makes it slow
going.
I've elaborated on both diagrams
below:
Diagram 1:
This gives a general overall view of the WSS4C
project, and how it would plug in to a SOAP Server, such as Axis C++. In this
scenario, the wsdd file shown in the diagram would contain the necessary
configuration details and/or instructions for SOAP message handling. During the
course of SOAP message processing, the SOAP Engine will pass the partially
processed message to the security handler (one of possibly many included in the
wsdd file). On the client-side, the client-side security handler would add
all the necessary security headers, then get the body of the SOAP message,
perform all necessary actions and give the secured message back to the SOAP
Engine, and where it will be eventually transmitted to its counterpart across a
network (in this case the Internet).
On the receiving end, the Transport Listener
(for example, the Apache Web Server) will receive the SOAP message and pass it
on to the SOAP Engine. After some initial processing, the Engine will
call the security handler. The server-side handler would then perform a
reverse operation as described by the wsdd file, i.e. decrypt any
portion of the
message intended for a particular web service, validate signatures, validate
tokens etc. before passing it (the message) back to the SOAP
Engine. The required functionality
for the handlers are provided by the WSS4C API.
Diagram
2:
This diagram summarizes the list of functions
the WSS4C API is expected to have eventually. These are: XML signature
handling,
XML encryption and Tokenization.
As always, any feedback would be much
appreciated.
With regards,
Sharanka
architectural draft - 22nd June 2004.pdf - 28K
--
Davanum Srinivas - http://webservices.apache.org/~dims/