You are viewing a plain text version of this content. The canonical link for it is here.

Posted to wss4j-dev@ws.apache.org by Wishing Carebear <wi...@gmail.com> on 2009/05/29 18:17:01 UTC

Re: Equivalent client.wsdd for the WSE3POLICYCACHE.config file of WSE3

Hello:
Can someone give some pointers. Or should I post this to a different wss4j
group. Please let me know as this is very urgent.

Thanks for your time and help,
Regards,
cabear

On Wed, May 27, 2009 at 8:16 PM, Wishing Carebear <
wishing.carebear@gmail.com> wrote:

> Hello:
> I'm using wss4j with Apache Axis 1.4 (no Axis2). Wondering if someone could
> provide what should be the equivalent client.wsdd file for the following
> policy file:
>
> <policies xmlns="http://schemas.microsoft.com/wse/2005/06/policy">
>   <extensions>
>     <extension name="usernameForCertificateSecurity"
> type="Microsoft.Web.Services3.Design.UsernameForCertificateAssertion,
> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
> PublicKeyToken=31bf3856ad364e35" />
>     <extension name="x509"
> type="Microsoft.Web.Services3.Design.X509TokenProvider,
> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
> PublicKeyToken=31bf3856ad364e35" />
>     <extension name="requireActionHeader"
> type="Microsoft.Web.Services3.Design.RequireActionHeaderAssertion,
> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
> PublicKeyToken=31bf3856ad364e35" />
>   </extensions>
>   <policy name="usernameTokenSecurity">
>     <usernameForCertificateSecurity establishSecurityContext="true"
> renewExpiredSecurityContext="true" requireSignatureConfirmation="false"
> messageProtectionOrder="SignBeforeEncrypt" requireDerivedKeys="true"
> ttlInSeconds="300">
>       <serviceToken>
>         <x509 storeLocation="LocalMachine" storeName="AddressBook"
> findValue="CN=TMPDMDevelopment" findType="FindBySubjectDistinguishedName" />
>       </serviceToken>
>       <protection>
>         <request signatureOptions="IncludeAddressing, IncludeTimestamp,
> IncludeSoapBody" encryptBody="true" />
>         <response signatureOptions="IncludeAddressing, IncludeTimestamp,
> IncludeSoapBody" encryptBody="true" />
>         <fault signatureOptions="IncludeAddressing, IncludeTimestamp,
> IncludeSoapBody" encryptBody="false" />
>       </protection>
>     </usernameForCertificateSecurity>
>     <requireActionHeader />
>   </policy>
> </policies>
>
> Thanks,
> cabear
>