You are viewing a plain text version of this content. The canonical link for it is here.
Posted to wss4j-dev@ws.apache.org by Wishing Carebear <wi...@gmail.com> on 2009/05/28 05:16:18 UTC
Equivalent client.wsdd for the WSE3POLICYCACHE.config file of WSE3
Hello:
I'm using wss4j with Apache Axis 1.4 (no Axis2). Wondering if someone could
provide what should be the equivalent client.wsdd file for the following
policy file:
<policies xmlns="http://schemas.microsoft.com/wse/2005/06/policy">
<extensions>
<extension name="usernameForCertificateSecurity"
type="Microsoft.Web.Services3.Design.UsernameForCertificateAssertion,
Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
PublicKeyToken=31bf3856ad364e35" />
<extension name="x509"
type="Microsoft.Web.Services3.Design.X509TokenProvider,
Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
PublicKeyToken=31bf3856ad364e35" />
<extension name="requireActionHeader"
type="Microsoft.Web.Services3.Design.RequireActionHeaderAssertion,
Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
PublicKeyToken=31bf3856ad364e35" />
</extensions>
<policy name="usernameTokenSecurity">
<usernameForCertificateSecurity establishSecurityContext="true"
renewExpiredSecurityContext="true" requireSignatureConfirmation="false"
messageProtectionOrder="SignBeforeEncrypt" requireDerivedKeys="true"
ttlInSeconds="300">
<serviceToken>
<x509 storeLocation="LocalMachine" storeName="AddressBook"
findValue="CN=TMPDMDevelopment" findType="FindBySubjectDistinguishedName" />
</serviceToken>
<protection>
<request signatureOptions="IncludeAddressing, IncludeTimestamp,
IncludeSoapBody" encryptBody="true" />
<response signatureOptions="IncludeAddressing, IncludeTimestamp,
IncludeSoapBody" encryptBody="true" />
<fault signatureOptions="IncludeAddressing, IncludeTimestamp,
IncludeSoapBody" encryptBody="false" />
</protection>
</usernameForCertificateSecurity>
<requireActionHeader />
</policy>
</policies>
Thanks,
cabear
Re: Equivalent client.wsdd for the WSE3POLICYCACHE.config file of
WSE3
Posted by Wishing Carebear <wi...@gmail.com>.
Hello:
Can someone give some pointers. Or should I post this to a different wss4j
group. Please let me know as this is very urgent.
Thanks for your time and help,
Regards,
cabear
On Wed, May 27, 2009 at 8:16 PM, Wishing Carebear <
wishing.carebear@gmail.com> wrote:
> Hello:
> I'm using wss4j with Apache Axis 1.4 (no Axis2). Wondering if someone could
> provide what should be the equivalent client.wsdd file for the following
> policy file:
>
> <policies xmlns="http://schemas.microsoft.com/wse/2005/06/policy">
> <extensions>
> <extension name="usernameForCertificateSecurity"
> type="Microsoft.Web.Services3.Design.UsernameForCertificateAssertion,
> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
> PublicKeyToken=31bf3856ad364e35" />
> <extension name="x509"
> type="Microsoft.Web.Services3.Design.X509TokenProvider,
> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
> PublicKeyToken=31bf3856ad364e35" />
> <extension name="requireActionHeader"
> type="Microsoft.Web.Services3.Design.RequireActionHeaderAssertion,
> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
> PublicKeyToken=31bf3856ad364e35" />
> </extensions>
> <policy name="usernameTokenSecurity">
> <usernameForCertificateSecurity establishSecurityContext="true"
> renewExpiredSecurityContext="true" requireSignatureConfirmation="false"
> messageProtectionOrder="SignBeforeEncrypt" requireDerivedKeys="true"
> ttlInSeconds="300">
> <serviceToken>
> <x509 storeLocation="LocalMachine" storeName="AddressBook"
> findValue="CN=TMPDMDevelopment" findType="FindBySubjectDistinguishedName" />
> </serviceToken>
> <protection>
> <request signatureOptions="IncludeAddressing, IncludeTimestamp,
> IncludeSoapBody" encryptBody="true" />
> <response signatureOptions="IncludeAddressing, IncludeTimestamp,
> IncludeSoapBody" encryptBody="true" />
> <fault signatureOptions="IncludeAddressing, IncludeTimestamp,
> IncludeSoapBody" encryptBody="false" />
> </protection>
> </usernameForCertificateSecurity>
> <requireActionHeader />
> </policy>
> </policies>
>
> Thanks,
> cabear
>