You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by bu...@apache.org on 2012/08/03 12:47:29 UTC
svn commit: r827803 - in /websites/production/cxf/content:
cache/docs.pageCache docs/ws-securitypolicy.html
Author: buildbot
Date: Fri Aug 3 10:47:29 2012
New Revision: 827803
Log:
Production update by buildbot for cxf
Modified:
websites/production/cxf/content/cache/docs.pageCache
websites/production/cxf/content/docs/ws-securitypolicy.html
Modified: websites/production/cxf/content/cache/docs.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/cxf/content/docs/ws-securitypolicy.html
==============================================================================
--- websites/production/cxf/content/docs/ws-securitypolicy.html (original)
+++ websites/production/cxf/content/docs/ws-securitypolicy.html Fri Aug 3 10:47:29 2012
@@ -181,6 +181,13 @@ Apache CXF -- WS-SecurityPolicy
</div>
+<h4><a shape="rect" name="WS-SecurityPolicy-STSClientConfigurationtags"></a>STS Client Configuration tags</h4>
+
+<div class="table-wrap">
+<table class="confluenceTable"><tbody><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.client </td><td colspan="1" rowspan="1" class="confluenceTd"> A reference to the STSClient class used to communicate with the STS.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.applies-to </td><td colspan="1" rowspan="1" class="confluenceTd"> The "AppliesTo" address to send to the STS. The default is the endpoint address of the service provider.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.token.usecert </td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to write out an X509Certificate structure in UseKey/KeyInfo, or whether to write out a KeyValue structure. The default value is "false".</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.token.do.cancel </td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to cancel a token when using SecureConversation a
fter successful invocation. The default is "false".</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.cache.issued.token.in.endpoint </td><td colspan="1" rowspan="1" class="confluenceTd"> Set this to "false" to not cache a SecurityToken per proxy object in the IssuedTokenInterceptorProvider. This should be done if a token is being retrieved from an STS in an intermediary. The default value is "true". </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.disable-wsmex-call-using-epr-address </td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to avoid STS client trying send WS-MetadataExchange call using STS EPR WSA address when the endpoint contract contains no WS-MetadataExchange info. The default value is "false".</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.token.crypto </td><td colspan="1" rowspan="1" class="confluenceTd"> A Crypto object to be used for the STS. See <a shape="
rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_CRYPTO">here</a> for more information.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.token.properties </td><td colspan="1" rowspan="1" class="confluenceTd"> The Crypto property configuration to use for the STS. See <a shape="rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_PROPERTIES">here</a> for more information.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.token.username </td><td colspan="1" rowspan="1" class="confluenceTd"> The alias name in the keystore to get the user's public key to send to the STS for the PublicKey KeyType case.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.token.act-as </td><td colspan="1" rowspan="1" class="confluenceTd"> The token to be sent to the STS in an "ActAs" field. See <a sha
pe="rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_ACT_AS">here</a> for more information.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> ws-security.sts.token.on-behalf-of </td><td colspan="1" rowspan="1" class="confluenceTd"> The token to be sent to the STS in an "OnBehalfOf" field. See <a shape="rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#STS_TOKEN_ON_BEHALF_OF">here</a> for more information.</td></tr></tbody></table>
+</div>
+
+
<h4><a shape="rect" name="WS-SecurityPolicy-ConfiguringviaSpring"></a>Configuring via Spring</h4>
<p>The properties are easily configured as client or endpoint properties--use the former for the SOAP client, the latter for the web service provider.</p>