You are viewing a plain text version of this content. The canonical link for it is here.

Posted to rampart-dev@ws.apache.org by ghader <gh...@douran.com> on 2009/09/09 12:43:27 UTC

how to use self signed certificates with rampart

how to use self signed certificates for signing and encrypting sent messages 
of a web service and verifying and decrypting received messages, in a web 
service using rampart?

Re: how to use self signed certificates with rampart

Posted by Thilina Mahesh Buddhika <th...@gmail.com>.

One approach is to import the self-signed certificates into a key store and
point that key store for cryptographic operations using the rampart-config.
You can use  rampart:encryptionCrypto> and <rampart:signatureCrypto> for
this.

Following listing is an example of it. You can get a good idea by going
through the Rampart samples. (Especially Sample 2 and Sample 3)

<rampart:RampartConfig xmlns:rampart="http://ws.apache.org/rampart/policy">
        <rampart:encryptionCrypto>
          <rampart:crypto
provider="org.wso2.carbon.security.util.ServerCrypto">
            <rampart:property
name="org.wso2.carbon.security.crypto.alias">service</rampart:property>
            <rampart:property
name="org.wso2.carbon.security.crypto.privatestore">service.jks</rampart:property>
            <rampart:property
name="org.wso2.carbon.security.crypto.truststores">service.jks,</rampart:property>
            <rampart:property
name="rampart.config.user">service</rampart:property>
          </rampart:crypto>
        </rampart:encryptionCrypto>
        <rampart:signatureCrypto>
          <rampart:crypto
provider="org.wso2.carbon.security.util.ServerCrypto">
            <rampart:property
name="org.wso2.carbon.security.crypto.alias">service</rampart:property>
            <rampart:property
name="org.wso2.carbon.security.crypto.privatestore">service.jks</rampart:property>
            <rampart:property
name="org.wso2.carbon.security.crypto.truststores">service.jks,</rampart:property>
            <rampart:property
name="rampart.config.user">service</rampart:property>
          </rampart:crypto>
        </rampart:signatureCrypto>
      </rampart:RampartConfig>

Thanks.
/ thilina

E-Mail         : thilinamb@gmail.com
I blog here : http://thilinamb.com


On Wed, Sep 9, 2009 at 4:13 PM, ghader <gh...@douran.com> wrote:

> how to use self signed certificates for signing and encrypting sent
> messages
> of a web service and verifying and decrypting received messages, in a web
> service using rampart?
>