You are viewing a plain text version of this content. The canonical link for it is here.
Posted to axis-cvs@ws.apache.org by ru...@apache.org on 2006/10/25 10:49:45 UTC
svn commit: r467581 - in
/webservices/axis2/branches/java/1_1/modules/samples/security/basic: ./
sample02/ sample03/ sample04/ sample05/ sample06/ sample07/ sample08/
sample09/ sample10/ sample11/
Author: ruchithf
Date: Wed Oct 25 01:49:43 2006
New Revision: 467581
URL: http://svn.apache.org/viewvc?view=rev&rev=467581
Log:
Adding more README.txt for samples
Added:
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample03/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample04/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample05/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample06/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample07/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample08/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample09/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample10/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample11/README.txt
Modified:
webservices/axis2/branches/java/1_1/modules/samples/security/basic/README.txt
webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample02/README.txt
Modified: webservices/axis2/branches/java/1_1/modules/samples/security/basic/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/README.txt?view=diff&rev=467581&r1=467580&r2=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/README.txt (original)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/README.txt Wed Oct 25 01:49:43 2006
@@ -17,7 +17,7 @@
01.) Rampart Engaged and no configuration
02.) UsernameToken authentication
-03.) UsernameToken authentication with plain text password
+03.) UsernameToken authentication with a plain text password
04.) Message integrity and non-repudiation with signature
05.) Encryption
06.) Sign and encrypt a messages
Modified: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample02/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample02/README.txt?view=diff&rev=467581&r1=467580&r2=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample02/README.txt (original)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample02/README.txt Wed Oct 25 01:49:43 2006
@@ -2,6 +2,9 @@
The client is configured to add a UsernameToken to the outgoing message.
- See the "OutflowSecurity" parameter in the client.axis2.xml
+
The service is configured to process it.
- See the "InflowSecurity" parameter in the services.xml
+Note how org.apache.rampart.samples.sample02.PWCBHandler supplies the password
+to wss4j to compute the digest for comparison.
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample03/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample03/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample03/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample03/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,12 @@
+UsernameToken authentication with a plain text password
+
+The client is configured to add a UsernameToken to the outgoing message.
+ - See the "OutflowSecurity" parameter in the client.axis2.xml
+ - Note the <passwordType>PasswordText</passwordType> element
+
+The service is configured to process it.
+ - See the "InflowSecurity" parameter in the services.xml
+
+Note how org.apache.rampart.samples.sample03.PWCBHandler authenticates the
+password
+
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample04/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample04/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample04/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample04/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,7 @@
+Message integrity and non-repudiation with signature
+
+Both client and servce are configured to sign the outgoing message and to verify
+the signature of the incoming message using their key pairs.
+ - See the "OutflowSecurity" and "InflowSecurity" parameters in the
+ client.axis2.xml and serivces.xml files
+
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample05/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample05/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample05/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample05/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,7 @@
+Encrypting messages
+
+Both client and servce are configured to encrypt the outgoing message and to
+decrypt incoming message using their key pairs.
+ - See the "OutflowSecurity" and "InflowSecurity" parameters in the
+ client.axis2.xml and serivces.xml files
+
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample06/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample06/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample06/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample06/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,8 @@
+Sign and encrypt messages
+
+Both client and servce are configured to first sign and then encrypt the
+outgoing message and to decrypt and verify the incoming message using their
+key pairs.
+ - See the "OutflowSecurity" and "InflowSecurity" parameters in the
+ client.axis2.xml and serivces.xml files
+
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample07/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample07/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample07/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample07/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,8 @@
+Encrypt and sign messages
+
+Both client and servce are configured to first encrypt and then sign the
+outgoing message and to verify and decrypt the incoming message using their
+key pairs.
+ - See the "OutflowSecurity" and "InflowSecurity" parameters in the
+ client.axis2.xml and serivces.xml files
+
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample08/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample08/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample08/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample08/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,10 @@
+Signing twice
+
+The client is configured to sign the outgoing message twice
+ - See the "OutflowSecurity" parameter in the client.axis2.xml
+ - Note the aditional <action> element that defines the second signature.
+
+The service is configured to process it.
+ - See the "InflowSecurity" parameter in the services.xml. Not that we
+ simply use "Signature Signature" as action items.
+
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample09/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample09/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample09/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample09/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,8 @@
+Encryption with a key known to both parties
+
+Both client and servce are configured to encrypt the outgoing message and to
+decrypt incoming message using a known named key
+ - See the "OutflowSecurity" and "InflowSecurity" parameters in the
+ client.axis2.xml and serivces.xml files
+ - Note the use of <EmbeddedKeyName>SessionKey</EmbeddedKeyName>
+ - Note that org.apache.rampart.samples.sample09.PWCBHandler sets the key
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample10/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample10/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample10/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample10/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,8 @@
+Sign and encrypt messages
+
+Both client and servce are configured to first sign and then encrypt the
+outgoing message and to decrypt and verify the incoming message using their
+key pairs.
+ - See the "OutflowSecurity" and "InflowSecurity" parameters in the
+ client.axis2.xml and serivces.xml files
+ - Note the use of <optimizeParts>[xpath expression]</optimizeParts>
Added: webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample11/README.txt
URL: http://svn.apache.org/viewvc/webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample11/README.txt?view=auto&rev=467581
==============================================================================
--- webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample11/README.txt (added)
+++ webservices/axis2/branches/java/1_1/modules/samples/security/basic/sample11/README.txt Wed Oct 25 01:49:43 2006
@@ -0,0 +1,8 @@
+Dynamic configuration : Get rid of the config files ... let's use code!
+
+Both client and servce are configured to first sign and then encrypt the
+outgoing message and to decrypt and verify the incoming message using their
+key pairs.
+ - Note that we don't use any parameters in the client.axis2.xml
+ - See org.apache.rampart.samples.sample11.Client's getOutflowConfiguration()
+ getInflowConfiguration() methods and their usage.
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-cvs-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-cvs-help@ws.apache.org