You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@cxf.apache.org by Clément Tamisier <cl...@gmail.com> on 2013/09/25 05:42:11 UTC
Multiple signatures
Hi,
I am using WSS4JOutInterceptor in my client cxf endpoint, signaturePropFile
and signatureAlgorithm are defined for the signature information and this
is working pretty good.
Now I would like to sign the message twice using 2 different certificates
(same or different keystore).
Is it possible to use this interceptor to do this ?
If am not wrong it should be possible to have multiple signature entries
described here: http://www.w3.org/TR/SOAP-dsig/#ex
I know also that soapUI allow to add multiple signature entries.
Do you have an idea ?
Thanks for your help
Best Regards.
Clément
Re: Multiple signatures
Posted by Colm O hEigeartaigh <co...@apache.org>.
By the way, I'm adding support for WSS4J 2.0 / CXF 3.0 to configure
Signature + Encryption actions with key information per-each action. So
this will support your use-case.
Colm.
On Fri, Sep 27, 2013 at 9:45 AM, Clément Tamisier <
clement.tamisier@gmail.com> wrote:
> Hi Colm,
> We are going to investigate in this way.
> Thanks for your reply.
> BR.
>
>
> On Wed, Sep 25, 2013 at 9:34 PM, Colm O hEigeartaigh <co...@apache.org>wrote:
>
>> It is not possible to do this at the moment. Your best bet is to use the
>> lower level WSS4J API to construct a security header with two signatures +
>> add it to the CXF message.
>>
>> Colm.
>>
>>
>> On Wed, Sep 25, 2013 at 4:42 AM, Clément Tamisier <
>> clement.tamisier@gmail.com> wrote:
>>
>> > Hi,
>> >
>> > I am using WSS4JOutInterceptor in my client cxf endpoint,
>> signaturePropFile
>> > and signatureAlgorithm are defined for the signature information and
>> this
>> > is working pretty good.
>> >
>> > Now I would like to sign the message twice using 2 different
>> certificates
>> > (same or different keystore).
>> > Is it possible to use this interceptor to do this ?
>> >
>> > If am not wrong it should be possible to have multiple signature entries
>> > described here: http://www.w3.org/TR/SOAP-dsig/#ex
>> >
>> > I know also that soapUI allow to add multiple signature entries.
>> >
>> > Do you have an idea ?
>> >
>> > Thanks for your help
>> > Best Regards.
>> >
>> > Clément
>> >
>>
>>
>>
>> --
>> Colm O hEigeartaigh
>>
>> Talend Community Coder
>> http://coders.talend.com
>>
>
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com
Re: Multiple signatures
Posted by Clément Tamisier <cl...@gmail.com>.
Hi Colm,
We are going to investigate in this way.
Thanks for your reply.
BR.
On Wed, Sep 25, 2013 at 9:34 PM, Colm O hEigeartaigh <co...@apache.org>wrote:
> It is not possible to do this at the moment. Your best bet is to use the
> lower level WSS4J API to construct a security header with two signatures +
> add it to the CXF message.
>
> Colm.
>
>
> On Wed, Sep 25, 2013 at 4:42 AM, Clément Tamisier <
> clement.tamisier@gmail.com> wrote:
>
> > Hi,
> >
> > I am using WSS4JOutInterceptor in my client cxf endpoint,
> signaturePropFile
> > and signatureAlgorithm are defined for the signature information and this
> > is working pretty good.
> >
> > Now I would like to sign the message twice using 2 different certificates
> > (same or different keystore).
> > Is it possible to use this interceptor to do this ?
> >
> > If am not wrong it should be possible to have multiple signature entries
> > described here: http://www.w3.org/TR/SOAP-dsig/#ex
> >
> > I know also that soapUI allow to add multiple signature entries.
> >
> > Do you have an idea ?
> >
> > Thanks for your help
> > Best Regards.
> >
> > Clément
> >
>
>
>
> --
> Colm O hEigeartaigh
>
> Talend Community Coder
> http://coders.talend.com
>
Re: Multiple signatures
Posted by Colm O hEigeartaigh <co...@apache.org>.
It is not possible to do this at the moment. Your best bet is to use the
lower level WSS4J API to construct a security header with two signatures +
add it to the CXF message.
Colm.
On Wed, Sep 25, 2013 at 4:42 AM, Clément Tamisier <
clement.tamisier@gmail.com> wrote:
> Hi,
>
> I am using WSS4JOutInterceptor in my client cxf endpoint, signaturePropFile
> and signatureAlgorithm are defined for the signature information and this
> is working pretty good.
>
> Now I would like to sign the message twice using 2 different certificates
> (same or different keystore).
> Is it possible to use this interceptor to do this ?
>
> If am not wrong it should be possible to have multiple signature entries
> described here: http://www.w3.org/TR/SOAP-dsig/#ex
>
> I know also that soapUI allow to add multiple signature entries.
>
> Do you have an idea ?
>
> Thanks for your help
> Best Regards.
>
> Clément
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com