You are viewing a plain text version of this content. The canonical link for it is here.
Posted to java-dev@axis.apache.org by de...@apache.org on 2007/04/27 14:39:46 UTC
svn commit: r533081 [19/23] - in /webservices/axis2/site: ./ 1_2/ 1_2/adb/
1_2/adb/images/ 1_2/images/ 1_2/images/archi-guide/ 1_2/images/userguide/
1_2/jibx/ 1_2/resources/ 1_2/resources/schemas/ 1_2/src/ css/ download/0_9/
download/0_91/ download/0_9...
Modified: webservices/axis2/site/modules/rampart/1_1/security-module.html
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_1/security-module.html?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/rampart/1_1/security-module.html (original)
+++ webservices/axis2/site/modules/rampart/1_1/security-module.html Fri Apr 27 05:39:33 2007
@@ -2,8 +2,8 @@
@import url("../../../style/maven-base.css");
@import url("../../../style/maven-theme.css");</style><link rel="stylesheet" href="../../../style/print.css" type="text/css" media="print"></link><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"></meta></head><body class="composite"><div id="banner"><a href="http://www.apache.org/" id="organizationLogo"><img alt="Apache Software Foundation" src="http://www.apache.org/images/asf-logo.gif"></img></a><a href="http://ws.apache.org/axis2/" id="projectLogo"><img alt="Apache Axis2" src="http://ws.apache.org/axis2/images/axis.jpg"></img></a><div class="clear"><hr></hr></div></div><div id="breadcrumbs"><div class="xleft">
- Last published: 12 January 2007
- | Doc for 1.1.1</div><div class="xright">
+ Last published: 27 April 2007
+ | Doc for 1.2</div><div class="xright">
<a href="../../../index.html">Axis2/Java</a>
@@ -27,7 +27,7 @@
<a href="http://www.apache.org" class="externalLink" title="External Link">Apache </a>
- </div><div class="clear"><hr></hr></div></div><div id="leftColumn"><div id="navcolumn"><div id="menuAxis2_Java"><h5>Axis2/Java</h5><ul><li class="none"><a href="../../../index.html">Home</a></li></ul></div><div id="menuDownloads"><h5>Downloads</h5><ul><li class="none"><a href="../../../download.cgi">Releases</a></li><li class="none"><a href="../../../modules/index.html">Modules</a></li><li class="none"><a href="../../../tools/index.html">Tools</a></li></ul></div><div id="menuDocumentation"><h5>Documentation</h5><ul><li class="expanded"><a href="../../../1_1_1/contents.html">Version 1.1.1</a><ul><li class="none"><a href="../../../1_1_1/toc.html">Table of Contents</a></li><li class="none"><a href="../../../1_1_1/installationguide.html">Installation Guide</a></li><li class="none"><a href="../../../1_1_1/quickstartguide.html">QuickStart Guide</a></li><li class="none"><a href="../../../1_1_1/userguide.html">User Guide</a></li><li class="none"><a href="../../../1_1_1/pojogui
de.html">POJO Guide</a></li><li class="none"><a href="../../../1_1_1/spring.html">Spring Guide</a></li><li class="none"><a href="../../../1_1_1/webadminguide.html">Web Administrator's Guide</a></li><li class="none"><a href="../../../1_1_1/migration.html">Migration Guide (from Axis1)</a></li></ul></li><li class="none"><a href="../../../1_1/contents.html">Version 1.1</a></li><li class="none"><a href="../../../1_0/index.html">Version 1.0</a></li><li class="none"><a href="../../../0_95/index.html">Version 0.95</a></li><li class="none"><a href="../../../0_94/index.html">Version 0.94</a></li><li class="none"><a href="../../../0_93/index.html">Version 0.93</a></li></ul></div><div id="menuResources"><h5>Resources</h5><ul><li class="none"><a href="../../../faq.html">FAQ</a></li><li class="none"><a href="../../../articles.html">Articles</a></li><li class="none"><a href="http://wiki.apache.org/ws/FrontPage/Axis2/" class="externalLink" title="External Link">Wiki</a></li><li class="none"
><a href="../../../refLib.html">Reference Library</a></li><li class="none"><a href="http://ws.apache.org/axis2/1_1_1/api/index.html" class="externalLink" title="External Link">Online Java Docs</a></li></ul></div><div id="menuGet_Involved"><h5>Get Involved</h5><ul><li class="none"><a href="../../../overview.html">Overview</a></li><li class="none"><a href="../../../svn.html">Checkout the Source</a></li><li class="none"><a href="../../../mail-lists.html">Mailing Lists</a></li><li class="none"><a href="../../../guidelines.html">Developer Guidelines</a></li><li class="none"><a href="../../../siteHowTo.html">Build the Site</a></li></ul></div><div id="menuProject_Information"><h5>Project Information</h5><ul><li class="none"><a href="../../../team-list.html">Project Team</a></li><li class="none"><a href="../../../issue-tracking.html">Issue Tracking</a></li><li class="none"><a href="http://svn.apache.org/viewcvs.cgi/webservices/axis2/trunk/?root=Apache-SVN" class="externalLink" title
="External Link">Source Code</a></li><li class="none"><a href="../../../thanks.html">Acknowledgements</a></li><li class="none"><a href="http://www.apache.org/licenses/LICENSE-2.0.html" class="externalLink" title="External Link">License</a></li></ul></div><a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy"><img alt="Built by Maven" src="../../../images/logos/maven-button-1.png"></img></a></div></div><div id="bodyColumn"><div class="contentBox"><div class="section"><a name="Securing_SOAP_Messages_with_Rampart"></a><h2>Securing SOAP Messages with Rampart</h2><p>Axis2 comes with a module based on Apache WSS4J [1] to provide WS-Security
+ </div><div class="clear"><hr></hr></div></div><div id="leftColumn"><div id="navcolumn"><div id="menuAxis2_Java"><h5>Axis2/Java</h5><ul><li class="none"><a href="../../../index.html">Home</a></li></ul></div><div id="menuDownloads"><h5>Downloads</h5><ul><li class="none"><a href="../../../download.cgi">Releases</a></li><li class="none"><a href="../../../modules/index.html">Modules</a></li><li class="none"><a href="../../../tools/index.html">Tools</a></li></ul></div><div id="menuDocumentation"><h5>Documentation</h5><ul><li class="expanded"><a href="../../../1_2/contents.html">Version 1.2</a><ul><li class="none"><a href="../../../1_2/toc.html">Table of Contents</a></li><li class="none"><a href="../../../1_2/installationguide.html">Installation Guide</a></li><li class="none"><a href="../../../1_2/quickstartguide.html">QuickStart Guide</a></li><li class="none"><a href="../../../1_2/userguide.html">User Guide</a></li><li class="none"><a href="../../../1_2/pojoguide.html">POJO
Guide</a></li><li class="none"><a href="../../../1_2/spring.html">Spring Guide</a></li><li class="none"><a href="../../../1_2/webadminguide.html">Web Administrator's Guide</a></li><li class="none"><a href="../../../1_2/migration.html">Migration Guide (from Axis1)</a></li></ul></li><li class="none"><a href="../../../1_1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../1_0/index.html">Version 1.0</a></li><li class="none"><a href="../../../0_95/index.html">Version 0.95</a></li><li class="none"><a href="../../../0_94/index.html">Version 0.94</a></li><li class="none"><a href="../../../0_93/index.html">Version 0.93</a></li></ul></div><div id="menuResources"><h5>Resources</h5><ul><li class="none"><a href="../../../faq.html">FAQ</a></li><li class="none"><a href="../../../articles.html">Articles</a></li><li class="none"><a href="http://wiki.apache.org/ws/FrontPage/Axis2/" class="externalLink" t
itle="External Link">Wiki</a></li><li class="none"><a href="../../../refLib.html">Reference Library</a></li><li class="none"><a href="http://ws.apache.org/axis2/1_2/api/index.html" class="externalLink" title="External Link">Online Java Docs</a></li></ul></div><div id="menuGet_Involved"><h5>Get Involved</h5><ul><li class="none"><a href="../../../overview.html">Overview</a></li><li class="none"><a href="../../../svn.html">Checkout the Source</a></li><li class="none"><a href="../../../mail-lists.html">Mailing Lists</a></li><li class="none"><a href="../../../guidelines.html">Developer Guidelines</a></li><li class="none"><a href="../../../siteHowTo.html">Build the Site</a></li></ul></div><div id="menuProject_Information"><h5>Project Information</h5><ul><li class="none"><a href="../../../team-list.html">Project Team</a></li><li class="none"><a href="../../../issue-tracking.html">Issue Tracking</a></li><li class="none"><a href="http://svn.apache.org/viewcvs.cgi/webservices/axis2/tr
unk/?root=Apache-SVN" class="externalLink" title="External Link">Source Code</a></li><li class="none"><a href="../../../thanks.html">Acknowledgements</a></li><li class="none"><a href="http://www.apache.org/licenses/LICENSE-2.0.html" class="externalLink" title="External Link">License</a></li></ul></div><a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy"><img alt="Built by Maven" src="../../../images/logos/maven-button-1.png"></img></a></div></div><div id="bodyColumn"><div class="contentBox"><div class="section"><a name="Securing_SOAP_Messages_with_Rampart"></a><h2>Securing SOAP Messages with Rampart</h2><p>Axis2 comes with a module based on Apache WSS4J [1] to provide WS-Security
features, called "Rampart". This document explains how to engage and
configure Rampart module.</p><div class="subsection"><a name="Content"></a><h3>Content</h3><ul>
<li><a href="#intro">Introduction</a></li>
@@ -94,36 +94,36 @@
2</a> shows how to sign the message twice by chaining the outflow handler
(using two 'action' elements)</p><p>Following is a description of the elements that can go in an 'action'
element of the OutflowSecurity parameter</p><br></br><table class="bodyTable"><tbody>
- <tr class="a"><td><b>Parameter</b></td><td><b>Description</b></td><td><b>Example</b></td></tr>
- <tr class="b"><td>items</td><td>Security actions for the inflow</td><td>Add a Timestamp, Sign the SOAP body and Encrypt the SOAP body <br></br>
+ <tr class="b"><td><b>Parameter</b></td><td><b>Description</b></td><td><b>Example</b></td></tr>
+ <tr class="a"><td>items</td><td>Security actions for the inflow</td><td>Add a Timestamp, Sign the SOAP body and Encrypt the SOAP body <br></br>
<items> Timestamp Signature Encrypt</items></td></tr>
- <tr class="a"><td>user</td><td>The user's name</td><td>Set alias of the key to be used to sign<br></br>
+ <tr class="b"><td>user</td><td>The user's name</td><td>Set alias of the key to be used to sign<br></br>
<user> bob</user></td></tr>
- <tr class="b"><td>passwordCallbackClass</td><td>Callback class used to provide the password required to create the
+ <tr class="a"><td>passwordCallbackClass</td><td>Callback class used to provide the password required to create the
UsernameToken or to sign the message</td><td><passwordCallbackClass>
org.apache.axis2.security.PWCallback</passwordCallbackClass></td></tr>
- <tr class="a"><td>signaturePropFile</td><td>property file used to get the signature parameters such as crypto
+ <tr class="b"><td>signaturePropFile</td><td>property file used to get the signature parameters such as crypto
provider, keystore and its password</td><td>Set example.properties file as the signature property file<br></br>
<signaturePropFile>
example.properties</signaturePropFile></td></tr>
- <tr class="b"><td>signatureKeyIdentifier</td><td>Key identifier to be used in referring the key in the signature</td><td>Use the serial number of the certificate<br></br>
+ <tr class="a"><td>signatureKeyIdentifier</td><td>Key identifier to be used in referring the key in the signature</td><td>Use the serial number of the certificate<br></br>
<signatureKeyIdentifier>
IssuerSerial</signatureKeyIdentifier></td></tr>
- <tr class="a"><td>encryptionKeyIdentifier</td><td>Key identifier to be used in referring the key in encryption</td><td>Use the serial number of the certificate <br></br>
+ <tr class="b"><td>encryptionKeyIdentifier</td><td>Key identifier to be used in referring the key in encryption</td><td>Use the serial number of the certificate <br></br>
<encryptionKeyIdentifier>IssuerSerial</encryptionKeyIdentifier></td></tr>
- <tr class="b"><td>encryptionUser</td><td>The user's name for encryption.</td><td><br></br>
+ <tr class="a"><td>encryptionUser</td><td>The user's name for encryption.</td><td><br></br>
<encryptionUser>alice</encryptionUser></td></tr>
- <tr class="a"><td>encryptionSymAlgorithm</td><td>Symmetric algorithm to be used for encryption</td><td>Use AES-128<br></br>
+ <tr class="b"><td>encryptionSymAlgorithm</td><td>Symmetric algorithm to be used for encryption</td><td>Use AES-128<br></br>
<encryptionSymAlgorithm>
http://www.w3.org/2001/04/xmlenc#aes128-cbc</encryptionSymAlgorithm></td></tr>
- <tr class="b"><td>encryptionKeyTransportAlgorithm</td><td>Key encryption algorithm</td><td>Use RSA-OAEP<br></br>
+ <tr class="a"><td>encryptionKeyTransportAlgorithm</td><td>Key encryption algorithm</td><td>Use RSA-OAEP<br></br>
<parameter name="encryptionSymAlgorithm">
http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</parameter></td></tr>
- <tr class="a"><td>signatureParts</td><td>Sign multiple parts in the SOAP message</td><td>Sign Foo and Bar elements qualified by "http://app.ns/ns"<br></br>
+ <tr class="b"><td>signatureParts</td><td>Sign multiple parts in the SOAP message</td><td>Sign Foo and Bar elements qualified by "http://app.ns/ns"<br></br>
<signatureParts>
{Element}{http://app.ns/ns}Foo;{Element}{http://app.ns/ns}Bar
</signatureParts></td></tr>
- <tr class="b"><td>optimizeParts</td><td>MTOM Optimize the elements specified by the XPath query</td><td>Optimize the CipherValue<br></br>
+ <tr class="a"><td>optimizeParts</td><td>MTOM Optimize the elements specified by the XPath query</td><td>Optimize the CipherValue<br></br>
<optimizeParts>
//xenc:EncryptedData/xenc:CipherData/xenc:CipherValue
</optimizeParts></td></tr>
@@ -131,19 +131,19 @@
'action' element is used to encapsulate the configuration elements here as
well. The schema of the 'action' element is available here. <a href="#ex3">Example 3</a> shows the configuration to decrypt, verify
signature and validate timestamp.</p><table class="bodyTable"><tbody>
- <tr class="a"><td><b>Parameter</b></td><td><b>Description</b></td><td><b>Example</b></td></tr>
- <tr class="b"><td>items</td><td>Security actions for the inflow</td><td>first the incoming message should be decrypted and then the
+ <tr class="b"><td><b>Parameter</b></td><td><b>Description</b></td><td><b>Example</b></td></tr>
+ <tr class="a"><td>items</td><td>Security actions for the inflow</td><td>first the incoming message should be decrypted and then the
signatures should be verified and should be checked for the
availability of the Timestamp <br></br>
<items> Timestamp Signature Encrypt</items></td></tr>
- <tr class="a"><td>passwordCallbackClass</td><td>Callback class used to obtain password for decryption and
+ <tr class="b"><td>passwordCallbackClass</td><td>Callback class used to obtain password for decryption and
UsernameToken verification</td><td><br></br>
<passwordCallbackClass>
org.apache.axis2.security.PWCallback</passwordCallbackClass></td></tr>
- <tr class="b"><td>signaturePropFile</td><td>Property file used for signature verification</td><td><br></br>
+ <tr class="a"><td>signaturePropFile</td><td>Property file used for signature verification</td><td><br></br>
<signaturePropFile>
sig.properties</signaturePropFile></td></tr>
- <tr class="a"><td>decryptionPropFile</td><td>Property file used for decryption</td><td><br></br>
+ <tr class="b"><td>decryptionPropFile</td><td>Property file used for decryption</td><td><br></br>
<decryptionPropFile>
dec.properties</decryptionPropFile></td></tr>
</tbody></table><br></br><p>Please note that the '.properties' files used in properties such as
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/in-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/in-sample.png?view=auto&rev=533081
==============================================================================
Binary file - no diff available.
Propchange: webservices/axis2/site/modules/rampart/1_2/sec-conf/in-sample.png
------------------------------------------------------------------------------
svn:mime-type = application/octet-stream
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/in.action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/in.action.xsd?view=auto&rev=533081
==============================================================================
--- webservices/axis2/site/modules/rampart/1_2/sec-conf/in.action.xsd (added)
+++ webservices/axis2/site/modules/rampart/1_2/sec-conf/in.action.xsd Fri Apr 27 05:39:33 2007
@@ -0,0 +1,16 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Inflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="decryptionPropFile" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/out-action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/out-action.xsd?view=auto&rev=533081
==============================================================================
--- webservices/axis2/site/modules/rampart/1_2/sec-conf/out-action.xsd (added)
+++ webservices/axis2/site/modules/rampart/1_2/sec-conf/out-action.xsd Fri Apr 27 05:39:33 2007
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Outflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="user" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="optimizeParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionSymAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyTransportAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyName" type="xs:string" minOccurs="0"/>
+ <xs:element name="timeToLive" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/out-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/out-sample.png?view=auto&rev=533081
==============================================================================
Binary file - no diff available.
Propchange: webservices/axis2/site/modules/rampart/1_2/sec-conf/out-sample.png
------------------------------------------------------------------------------
svn:mime-type = application/octet-stream
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/out-sample2.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/out-sample2.png?view=auto&rev=533081
==============================================================================
Binary file - no diff available.
Propchange: webservices/axis2/site/modules/rampart/1_2/sec-conf/out-sample2.png
------------------------------------------------------------------------------
svn:mime-type = application/octet-stream
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/rampart-config.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/rampart-config.xsd?view=auto&rev=533081
==============================================================================
--- webservices/axis2/site/modules/rampart/1_2/sec-conf/rampart-config.xsd (added)
+++ webservices/axis2/site/modules/rampart/1_2/sec-conf/rampart-config.xsd Fri Apr 27 05:39:33 2007
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:ramp="http://ws.apache.org/rampart/policy" targetNamespace="http://ws.apache.org/rampart/policy" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="RampartConfig">
+ <xs:annotation>
+ <xs:documentation>Rampart specific configuration assertion</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="user" type="xs:string"/>
+ <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
+ <xs:element name="passwordCallbackClass" type="xs:string"/>
+ <xs:element name="encryptionCypto" type="ramp:crypto" minOccurs="0"/>
+ <xs:element name="signatureCypto" type="ramp:crypto" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+ <xs:complexType name="crypto">
+ <xs:annotation>
+ <xs:documentation>Crypto configuration assertion</xs:documentation>
+ </xs:annotation>
+ <xs:sequence maxOccurs="unbounded">
+ <xs:element name="property" type="xs:string"/>
+ </xs:sequence>
+ <xs:attribute name="provider"/>
+ </xs:complexType>
+</xs:schema>
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-policy.html
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-policy.html?view=auto&rev=533081
==============================================================================
--- webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-policy.html (added)
+++ webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-policy.html Fri Apr 27 05:39:33 2007
@@ -0,0 +1,74 @@
+<wsp:Policy wsu:Id="SigEncrTripleDesRSA15DK">
+<wsp:ExactlyOne>
+ <wsp:All>
+ <sp:AsymmetricBinding>
+ <wsp:Policy>
+ <sp:InitiatorToken>
+ <wsp:Policy>
+ <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
+ <wsp:Policy>
+ <sp:RequireDerivedKeys></sp:RequireDerivedKeys>
+ <sp:WssX509V3Token10></sp:WssX509V3Token10>
+ </wsp:Policy>
+ </sp:X509Token>
+ </wsp:Policy>
+ </sp:InitiatorToken>
+ <sp:RecipientToken>
+ <wsp:Policy>
+ <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
+ <wsp:Policy>
+ <sp:RequireDerivedKeys></sp:RequireDerivedKeys>
+ <sp:WssX509V3Token10></sp:WssX509V3Token10>
+ </wsp:Policy>
+ </sp:X509Token>
+ </wsp:Policy>
+ </sp:RecipientToken>
+ <sp:AlgorithmSuite>
+ <wsp:Policy>
+ <sp:TripleDesRsa15></sp:TripleDesRsa15>
+ </wsp:Policy>
+ </sp:AlgorithmSuite>
+ <sp:Layout>
+ <wsp:Policy>
+ <sp:Strict></sp:Strict>
+ </wsp:Policy>
+ </sp:Layout>
+ <sp:IncludeTimestamp></sp:IncludeTimestamp>
+ <sp:OnlySignEntireHeadersAndBody></sp:OnlySignEntireHeadersAndBody>
+ </wsp:Policy>
+ </sp:AsymmetricBinding>
+ <sp:Wss10>
+ <wsp:Policy>
+ <sp:MustSupportRefKeyIdentifier></sp:MustSupportRefKeyIdentifier>
+ <sp:MustSupportRefIssuerSerial></sp:MustSupportRefIssuerSerial>
+ </wsp:Policy>
+ </sp:Wss10>
+ <sp:SignedParts>
+ <sp:Body></sp:Body>
+ </sp:SignedParts>
+ <sp:EncryptedParts>
+ <sp:Body></sp:Body>
+ </sp:EncryptedParts>
+ <ramp:RampartConfig>
+ <ramp:user>alice</ramp:user>
+ <ramp:encryptionUser>bob</ramp:encryptionUser>
+ <ramp:passwordCallbackClass>org.apache.rampart.PWCallback</ramp:passwordCallbackClass>
+
+ <ramp:signatureCrypto>
+ <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.file">test-resources/rampart/store.jks</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
+ </ramp:crypto>
+ </ramp:signatureCrypto>
+ <ramp:encryptionCypto>
+ <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.file">test-resources/rampart/store.jks</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
+ </ramp:crypto>
+ </ramp:encryptionCypto>
+ </ramp:RampartConfig>
+ </wsp:All>
+</wsp:ExactlyOne>
+</wsp:Policy>
\ No newline at end of file
Added: webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-services.html
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-services.html?view=auto&rev=533081
==============================================================================
--- webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-services.html (added)
+++ webservices/axis2/site/modules/rampart/1_2/sec-conf/sample-services.html Fri Apr 27 05:39:33 2007
@@ -0,0 +1,89 @@
+<service name="SecureService7">
+
+ <module ref="addressing"></module>
+ <module ref="rampart"></module>
+
+ <parameter locked="false" name="ServiceClass">org.apache.rampart.Service</parameter>
+
+ <operation name="echo">
+ <messageReceiver class="org.apache.axis2.receivers.RawXMLINOutMessageReceiver"></messageReceiver>
+ <actionMapping>urn:echo</actionMapping>
+ </operation>
+
+ <wsp:Policy wsu:Id="SigEncrTripleDesRSA15DK">
+ <wsp:ExactlyOne>
+ <wsp:All>
+ <sp:AsymmetricBinding>
+ <wsp:Policy>
+ <sp:InitiatorToken>
+ <wsp:Policy>
+ <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
+ <wsp:Policy>
+ <sp:RequireDerivedKeys></sp:RequireDerivedKeys>
+ <sp:WssX509V3Token10></sp:WssX509V3Token10>
+ </wsp:Policy>
+ </sp:X509Token>
+ </wsp:Policy>
+ </sp:InitiatorToken>
+ <sp:RecipientToken>
+ <wsp:Policy>
+ <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
+ <wsp:Policy>
+ <sp:RequireDerivedKeys></sp:RequireDerivedKeys>
+ <sp:WssX509V3Token10></sp:WssX509V3Token10>
+ </wsp:Policy>
+ </sp:X509Token>
+ </wsp:Policy>
+ </sp:RecipientToken>
+ <sp:AlgorithmSuite>
+ <wsp:Policy>
+ <sp:TripleDesRsa15></sp:TripleDesRsa15>
+ </wsp:Policy>
+ </sp:AlgorithmSuite>
+ <sp:Layout>
+ <wsp:Policy>
+ <sp:Strict></sp:Strict>
+ </wsp:Policy>
+ </sp:Layout>
+ <sp:IncludeTimestamp></sp:IncludeTimestamp>
+ <sp:OnlySignEntireHeadersAndBody></sp:OnlySignEntireHeadersAndBody>
+ </wsp:Policy>
+ </sp:AsymmetricBinding>
+ <sp:Wss10>
+ <wsp:Policy>
+ <sp:MustSupportRefKeyIdentifier></sp:MustSupportRefKeyIdentifier>
+ <sp:MustSupportRefIssuerSerial></sp:MustSupportRefIssuerSerial>
+ </wsp:Policy>
+ </sp:Wss10>
+ <sp:SignedParts>
+ <sp:Body></sp:Body>
+ </sp:SignedParts>
+ <sp:EncryptedParts>
+ <sp:Body></sp:Body>
+ </sp:EncryptedParts>
+
+ <ramp:RampartConfig>
+ <ramp:user>alice</ramp:user>
+ <ramp:encryptionUser>bob</ramp:encryptionUser>
+ <ramp:passwordCallbackClass>org.apache.rampart.PWCallback</ramp:passwordCallbackClass>
+
+ <ramp:signatureCrypto>
+ <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.file">store.jks</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
+ </ramp:crypto>
+ </ramp:signatureCrypto>
+ <ramp:encryptionCypto>
+ <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.file">store.jks</ramp:property>
+ <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
+ </ramp:crypto>
+ </ramp:encryptionCypto>
+ </ramp:RampartConfig>
+
+ </wsp:All>
+ </wsp:ExactlyOne>
+ </wsp:Policy>
+</service>
\ No newline at end of file
Added: webservices/axis2/site/modules/rampart/1_2/security-module.html
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/rampart/1_2/security-module.html?view=auto&rev=533081
==============================================================================
--- webservices/axis2/site/modules/rampart/1_2/security-module.html (added)
+++ webservices/axis2/site/modules/rampart/1_2/security-module.html Fri Apr 27 05:39:33 2007
@@ -0,0 +1,167 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html><head><title>Axis2/Java - Rampart : WS-Security module for Axis2</title><style type="text/css" media="all">
+ @import url("../../../style/maven-base.css");
+
+ @import url("../../../style/maven-theme.css");</style><link rel="stylesheet" href="../../../style/print.css" type="text/css" media="print"></link><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"></meta></head><body class="composite"><div id="banner"><a href="http://www.apache.org/" id="organizationLogo"><img alt="Apache Software Foundation" src="http://www.apache.org/images/asf-logo.gif"></img></a><a href="http://ws.apache.org/axis2/" id="projectLogo"><img alt="Apache Axis2" src="http://ws.apache.org/axis2/images/axis.jpg"></img></a><div class="clear"><hr></hr></div></div><div id="breadcrumbs"><div class="xleft">
+ Last published: 27 April 2007
+ | Doc for 1.2</div><div class="xright">
+
+ <a href="../../../index.html">Axis2/Java</a>
+
+
+
+ <span class="separator">|</span>
+
+
+ <a href="http://ws.apache.org/axis2/c" class="externalLink" title="External Link">Axis2/C</a>
+
+
+
+ <span class="separator">|</span>
+
+
+ <a href="http://ws.apache.org" class="externalLink" title="External Link">Apache WS</a>
+
+
+
+ <span class="separator">|</span>
+
+
+ <a href="http://www.apache.org" class="externalLink" title="External Link">Apache </a>
+ </div><div class="clear"><hr></hr></div></div><div id="leftColumn"><div id="navcolumn"><div id="menuAxis2_Java"><h5>Axis2/Java</h5><ul><li class="none"><a href="../../../index.html">Home</a></li></ul></div><div id="menuDownloads"><h5>Downloads</h5><ul><li class="none"><a href="../../../download.cgi">Releases</a></li><li class="none"><a href="../../../modules/index.html">Modules</a></li><li class="none"><a href="../../../tools/index.html">Tools</a></li></ul></div><div id="menuDocumentation"><h5>Documentation</h5><ul><li class="expanded"><a href="../../../1_2/contents.html">Version 1.2</a><ul><li class="none"><a href="../../../1_2/toc.html">Table of Contents</a></li><li class="none"><a href="../../../1_2/installationguide.html">Installation Guide</a></li><li class="none"><a href="../../../1_2/quickstartguide.html">QuickStart Guide</a></li><li class="none"><a href="../../../1_2/userguide.html">User Guide</a></li><li class="none"><a href="../../../1_2/pojoguide.html">POJO
Guide</a></li><li class="none"><a href="../../../1_2/spring.html">Spring Guide</a></li><li class="none"><a href="../../../1_2/webadminguide.html">Web Administrator's Guide</a></li><li class="none"><a href="../../../1_2/migration.html">Migration Guide (from Axis1)</a></li></ul></li><li class="none"><a href="../../../1_1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../1_0/index.html">Version 1.0</a></li><li class="none"><a href="../../../0_95/index.html">Version 0.95</a></li><li class="none"><a href="../../../0_94/index.html">Version 0.94</a></li><li class="none"><a href="../../../0_93/index.html">Version 0.93</a></li></ul></div><div id="menuResources"><h5>Resources</h5><ul><li class="none"><a href="../../../faq.html">FAQ</a></li><li class="none"><a href="../../../articles.html">Articles</a></li><li class="none"><a href="http://wiki.apache.org/ws/FrontPage/Axis2/" class="externalLink" t
itle="External Link">Wiki</a></li><li class="none"><a href="../../../refLib.html">Reference Library</a></li><li class="none"><a href="http://ws.apache.org/axis2/1_2/api/index.html" class="externalLink" title="External Link">Online Java Docs</a></li></ul></div><div id="menuGet_Involved"><h5>Get Involved</h5><ul><li class="none"><a href="../../../overview.html">Overview</a></li><li class="none"><a href="../../../svn.html">Checkout the Source</a></li><li class="none"><a href="../../../mail-lists.html">Mailing Lists</a></li><li class="none"><a href="../../../guidelines.html">Developer Guidelines</a></li><li class="none"><a href="../../../siteHowTo.html">Build the Site</a></li></ul></div><div id="menuProject_Information"><h5>Project Information</h5><ul><li class="none"><a href="../../../team-list.html">Project Team</a></li><li class="none"><a href="../../../issue-tracking.html">Issue Tracking</a></li><li class="none"><a href="http://svn.apache.org/viewcvs.cgi/webservices/axis2/tr
unk/?root=Apache-SVN" class="externalLink" title="External Link">Source Code</a></li><li class="none"><a href="../../../thanks.html">Acknowledgements</a></li><li class="none"><a href="http://www.apache.org/licenses/LICENSE-2.0.html" class="externalLink" title="External Link">License</a></li></ul></div><a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy"><img alt="Built by Maven" src="../../../images/logos/maven-button-1.png"></img></a></div></div><div id="bodyColumn"><div class="contentBox"><div class="section"><a name="Securing_SOAP_Messages_with_Rampart"></a><h2>Securing SOAP Messages with Rampart</h2><p>Axis2 comes with a module based on Apache WSS4J [1] to provide WS-Security
+features, called "Rampart". This document explains how to engage and
+configure Rampart module.</p><div class="subsection"><a name="Content"></a><h3>Content</h3><ul>
+ <li><a href="#intro">Introduction</a></li>
+ <li><a href="#1_1_config">Rampart-1.1 Configuration</a>
+ <ul>
+ <li><a href="#1_1_assetions">Rampart Specific Assertions</a></li>
+ <li><a href="#1_1_service_config">Service Configration</a></li>
+ <li><a href="#1_1_client_config">Client Confiuration</a></li>
+ </ul></li>
+ <li><a href="#1_0_config">Rampart-1.0 Configuration</a>
+ <ul>
+ <li><a href="#outflowsecurity">OutflowSecurity Parameter</a></li>
+ <li><a href="#inflowsecurity">InflowSecurity Parameter</a></li>
+ </ul></li>
+ <li><a href="#references">References</a></li>
+ <li><a href="#examples">Examples</a></li>
+</ul><p><a name="intro"></a></p></div><div class="subsection"><a name="Introduction"></a><h3>Introduction</h3><p>Since rampart module inserts handlers in the system specific security
+phase, it must be engaged globally. These handlers can be configured
+using WS-SecurityPolicy[2] and Rampart specific policy assertions.
+Rampart-1.0 used two axis2 parameters for configuration and these are
+still supported in the 1.1 release as well.</p><p>The rampart-1.1 release is available
+<a href="http://www.apache.org/dyn/closer.cgi/ws/rampart/1_1" class="externalLink" title="External Link">here</a>.</p><p>First it should be engaged by inserting the following in the axis2.xml
+file.</p>
+ <div class="source"><pre><pre> <module ref="rampart"/></pre>
+</pre></div>
+ <p>The web admin interface can be used when Axis2 is deployed in a servlet
+container such as Apache Tomcat.</p><p>At the server it is possible to provide security on a per service basis.
+The configuration parameters should be set in the service.xml file of the
+service. The client side config parameters should be set in the axis2.xml of
+the client's Axis2 repository.</p><p><a id="1_1_config"></a></p></div><div class="subsection"><a name="Rampart-1_1_Configuration"></a><h3>Rampart-1.1 Configuration</h3><p><a id="1_1_assetions"></a></p></div><div class="subsection"><a name="Rampart_Specific_Assertions"></a><h3>Rampart Specific Assertions</h3><p>Rampart uses the standard WS-SecurityPolicy[2] assertions and also defines its own
+assertions to be able capture the configuration information that is not provided
+in WS-SecurityPolicy.</p><p>The Rampart specific assertion's xsd can be found <a href="sec-conf/rampart-config.xsd">here
+</a>.</p><p>The <strong>ramp:RampartConfig</strong> assertion must be available as a one of the top
+level assertions of the policy as shown <a href="sec-conf/sample-policy.xml">here</a>.</p><p><a id="1_1_service_config"></a></p></div><div class="subsection"><a name="Service_Configration"></a><h3>Service Configration</h3><p>
+
+To configure the service one will simply have to add the policy element into the
+sevices.xml file. A sample service.xml file is available
+<a href="sec-conf/sample-services.xml">here</a>.
+<a id="1_1_client_config"></a></p></div><div class="subsection"><a name="Client_Confiuration"></a><h3>Client Confiuration</h3><p>On the client side, a policy object should be created and loaded into options. Creating the policy object can be done using a "policy.xml" file as follows.</p>
+ <div class="source"><pre>
+ //Creating the object
+ StAXOMBuilder builder = new StAXOMBuilder(pathToPolicyfile);
+ Policy clientPolicy = PolicyEngine.getPolicy(builder.getDocumentElement());
+ //setting the object
+ Options options = new Options();
+ options.setProperty(RampartMessageData.KEY_RAMPART_POLICY, clientPolicy);
+
+</pre></div>
+ <p><a id="1_0_config"></a></p></div><div class="subsection"><a name="Rampart-1_0_Configuration"></a><h3>Rampart-1.0 Configuration</h3><p>Rampart module uses two parameters:</p><ul>
+ <li><a href="outflowsecurity">OutflowSecurity</a></li>
+ <li><a href="inflowsecurity">InflowSecurity</a></li>
+</ul><p>
+The configuration that can go in each of these parameters are described
+below: <a name="outflowsecurity"></a></p></div><div class="subsection"><a name="OutflowSecurity_Parameter"></a><h3>OutflowSecurity Parameter</h3><p>
+This parameter is used to configure the outflow security handler. The outflow
+handler can be invoked more than once in the outflow one can provide
+configuration for each of these invocations. The 'action' element describes
+one of these configurations. Therefore the 'OutflowSecurity' parameter can
+contain more than one 'action' elements. The schema of this 'action' element
+is available <a href="sec-conf/out-action.xsd">here</a>.
+
+</p><p>An outflow configuration to add a timestamp, sign and encrypt the message
+once, is shown in<a href="#ex1"> Example 1</a> and <a href="#ex1"> Example
+2</a> shows how to sign the message twice by chaining the outflow handler
+(using two 'action' elements)</p><p>Following is a description of the elements that can go in an 'action'
+element of the OutflowSecurity parameter</p><br></br><table class="bodyTable"><tbody>
+ <tr class="a"><td><b>Parameter</b></td><td><b>Description</b></td><td><b>Example</b></td></tr>
+ <tr class="b"><td>items</td><td>Security actions for the inflow</td><td>Add a Timestamp, Sign the SOAP body and Encrypt the SOAP body <br></br>
+ <items> Timestamp Signature Encrypt</items></td></tr>
+ <tr class="a"><td>user</td><td>The user's name</td><td>Set alias of the key to be used to sign<br></br>
+ <user> bob</user></td></tr>
+ <tr class="b"><td>passwordCallbackClass</td><td>Callback class used to provide the password required to create the
+ UsernameToken or to sign the message</td><td><passwordCallbackClass>
+ org.apache.axis2.security.PWCallback</passwordCallbackClass></td></tr>
+ <tr class="a"><td>signaturePropFile</td><td>property file used to get the signature parameters such as crypto
+ provider, keystore and its password</td><td>Set example.properties file as the signature property file<br></br>
+ <signaturePropFile>
+ example.properties</signaturePropFile></td></tr>
+ <tr class="b"><td>signatureKeyIdentifier</td><td>Key identifier to be used in referring the key in the signature</td><td>Use the serial number of the certificate<br></br>
+ <signatureKeyIdentifier>
+ IssuerSerial</signatureKeyIdentifier></td></tr>
+ <tr class="a"><td>encryptionKeyIdentifier</td><td>Key identifier to be used in referring the key in encryption</td><td>Use the serial number of the certificate <br></br>
+ <encryptionKeyIdentifier>IssuerSerial</encryptionKeyIdentifier></td></tr>
+ <tr class="b"><td>encryptionUser</td><td>The user's name for encryption.</td><td><br></br>
+ <encryptionUser>alice</encryptionUser></td></tr>
+ <tr class="a"><td>encryptionSymAlgorithm</td><td>Symmetric algorithm to be used for encryption</td><td>Use AES-128<br></br>
+ <encryptionSymAlgorithm>
+ http://www.w3.org/2001/04/xmlenc#aes128-cbc</encryptionSymAlgorithm></td></tr>
+ <tr class="b"><td>encryptionKeyTransportAlgorithm</td><td>Key encryption algorithm</td><td>Use RSA-OAEP<br></br>
+ <parameter name="encryptionSymAlgorithm">
+ http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</parameter></td></tr>
+ <tr class="a"><td>signatureParts</td><td>Sign multiple parts in the SOAP message</td><td>Sign Foo and Bar elements qualified by "http://app.ns/ns"<br></br>
+ <signatureParts>
+ {Element}{http://app.ns/ns}Foo;{Element}{http://app.ns/ns}Bar
+ </signatureParts></td></tr>
+ <tr class="b"><td>optimizeParts</td><td>MTOM Optimize the elements specified by the XPath query</td><td>Optimize the CipherValue<br></br>
+ <optimizeParts>
+ //xenc:EncryptedData/xenc:CipherData/xenc:CipherValue
+ </optimizeParts></td></tr>
+ </tbody></table><p><a name="inflowsecurity"></a></p></div><div class="subsection"><a name="InflowSecurity_Parameter"></a><h3>InflowSecurity Parameter</h3><p>This parameter is used to configure the inflow security handler. The
+'action' element is used to encapsulate the configuration elements here as
+well. The schema of the 'action' element is available here. <a href="#ex3">Example 3</a> shows the configuration to decrypt, verify
+signature and validate timestamp.</p><table class="bodyTable"><tbody>
+ <tr class="a"><td><b>Parameter</b></td><td><b>Description</b></td><td><b>Example</b></td></tr>
+ <tr class="b"><td>items</td><td>Security actions for the inflow</td><td>first the incoming message should be decrypted and then the
+ signatures should be verified and should be checked for the
+ availability of the Timestamp <br></br>
+ <items> Timestamp Signature Encrypt</items></td></tr>
+ <tr class="a"><td>passwordCallbackClass</td><td>Callback class used to obtain password for decryption and
+ UsernameToken verification</td><td><br></br>
+ <passwordCallbackClass>
+ org.apache.axis2.security.PWCallback</passwordCallbackClass></td></tr>
+ <tr class="b"><td>signaturePropFile</td><td>Property file used for signature verification</td><td><br></br>
+ <signaturePropFile>
+ sig.properties</signaturePropFile></td></tr>
+ <tr class="a"><td>decryptionPropFile</td><td>Property file used for decryption</td><td><br></br>
+ <decryptionPropFile>
+ dec.properties</decryptionPropFile></td></tr>
+ </tbody></table><br></br><p>Please note that the '.properties' files used in properties such as
+OutSignaturePropFile are the same property files that are using in the WSS4J
+project. Following shows the properties defined in a sample property file</p>
+ <div class="source"><pre><pre> org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
+ org.apache.ws.security.crypto.merlin.keystore.type=pkcs12
+ org.apache.ws.security.crypto.merlin.keystore.password=security
+ org.apache.ws.security.crypto.merlin.keystore.alias=16c73ab6-b892-458f-abf5-2f875f74882e
+ org.apache.ws.security.crypto.merlin.alias.password=security
+ org.apache.ws.security.crypto.merlin.file=keys/x509.PFX.MSFT
+ </pre>
+</pre></div>
+ <p>org.apache.ws.security.crypto.provider defines the implementation of
+the org.apache.ws.security.components.crypto.Crypto interface to provide the
+crypto information required by WSS4J. The other properties defined are the
+configuration properties used by the implementation class
+(org.apache.ws.security.components.crypto.Merlin). <a name="ref"></a><a name="references"></a></p></div><div class="subsection"><a name="References"></a><h3>References</h3><p>1. <a href="http://ws.apache.org/wss4j" class="externalLink" title="External Link">Apache WSS4J -Home</a></p><p><a name="examples"></a></p><p>2. <a href="http://specs.xmlsoap.org/ws/2005/07/securitypolicy/ws-securitypolicy.pdf" class="externalLink" title="External Link">ws-securitypolicy.pdf</a></p><p><a name="examples"></a></p></div><div class="subsection"><a name="Examples"></a><h3>Examples</h3><p id="ex1">Example 1: An outflow configuration to add a timestamp, sign and
+encrypt the message once</p><p><img alt="" src="sec-conf/out-sample.png"></img></p><p id="ex2">Example 2: An outflow configuration to sign the message twice and
+add a timestamp</p><p><img alt="" src="sec-conf/out-sample2.png"></img></p><p id="ex3">Example 3: An inflow configuration to decrypt, verify signature
+and validate timestamp</p><p><img alt="" src="sec-conf/in-sample.png"></img></p></div></div></div></div><div class="clear"><hr></hr></div><div id="footer"><div class="xright">© 2004-2007, Apache Software Foundation</div><div class="clear"><hr></hr></div></div></body></html>
\ No newline at end of file
Modified: webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/in-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/in-sample.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/in.action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/in.action.xsd?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/in.action.xsd (original)
+++ webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/in.action.xsd Fri Apr 27 05:39:33 2007
@@ -1,16 +1,16 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
- <xs:element name="action">
- <xs:annotation>
- <xs:documentation>Inflow security 'action' configuration</xs:documentation>
- </xs:annotation>
- <xs:complexType>
- <xs:sequence>
- <xs:element name="items" type="xs:string"/>
- <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="decryptionPropFile" type="xs:string" minOccurs="0"/>
- </xs:sequence>
- </xs:complexType>
- </xs:element>
-</xs:schema>
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Inflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="decryptionPropFile" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Modified: webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-action.xsd?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-action.xsd (original)
+++ webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-action.xsd Fri Apr 27 05:39:33 2007
@@ -1,27 +1,27 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
- <xs:element name="action">
- <xs:annotation>
- <xs:documentation>Outflow security 'action' configuration</xs:documentation>
- </xs:annotation>
- <xs:complexType>
- <xs:sequence>
- <xs:element name="items" type="xs:string"/>
- <xs:element name="user" type="xs:string"/>
- <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="signatureKeyIdentifier" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionKeyIdentifier" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
- <xs:element name="signatureParts" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionParts" type="xs:string" minOccurs="0"/>
- <xs:element name="optimizeParts" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionSymAlgorithm" type="xs:string" minOccurs="0"/>
- <xs:element name="EmbeddedKeyCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionKeyTransportAlgorithm" type="xs:string" minOccurs="0"/>
- <xs:element name="EmbeddedKeyName" type="xs:string" minOccurs="0"/>
- </xs:sequence>
- </xs:complexType>
- </xs:element>
-</xs:schema>
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Outflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="user" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="optimizeParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionSymAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyTransportAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyName" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Modified: webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-sample.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-sample2.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_94/0.94/sec-conf/out-sample2.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/0_94/0.94/security-module.html
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_94/0.94/security-module.html?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/0_94/0.94/security-module.html (original)
+++ webservices/axis2/site/modules/wss4j/0_94/0.94/security-module.html Fri Apr 27 05:39:33 2007
@@ -2,8 +2,8 @@
@import url("../../../../style/maven-base.css");
@import url("../../../../style/maven-theme.css");</style><link rel="stylesheet" href="../../../../style/print.css" type="text/css" media="print"></link><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"></meta></head><body class="composite"><div id="banner"><a href="http://www.apache.org/" id="organizationLogo"><img alt="Apache Software Foundation" src="http://www.apache.org/images/asf-logo.gif"></img></a><a href="http://ws.apache.org/axis2/" id="projectLogo"><img alt="Apache Axis2" src="http://ws.apache.org/axis2/images/axis.jpg"></img></a><div class="clear"><hr></hr></div></div><div id="breadcrumbs"><div class="xleft">
- Last published: 12 January 2007
- | Doc for 1.1.1</div><div class="xright">
+ Last published: 27 April 2007
+ | Doc for 1.2</div><div class="xright">
<a href="../../../../index.html">Axis2/Java</a>
@@ -27,7 +27,7 @@
<a href="http://www.apache.org" class="externalLink" title="External Link">Apache </a>
- </div><div class="clear"><hr></hr></div></div><div id="leftColumn"><div id="navcolumn"><div id="menuAxis2_Java"><h5>Axis2/Java</h5><ul><li class="none"><a href="../../../../index.html">Home</a></li></ul></div><div id="menuDownloads"><h5>Downloads</h5><ul><li class="none"><a href="../../../../download.cgi">Releases</a></li><li class="none"><a href="../../../../modules/index.html">Modules</a></li><li class="none"><a href="../../../../tools/index.html">Tools</a></li></ul></div><div id="menuDocumentation"><h5>Documentation</h5><ul><li class="expanded"><a href="../../../../1_1_1/contents.html">Version 1.1.1</a><ul><li class="none"><a href="../../../../1_1_1/toc.html">Table of Contents</a></li><li class="none"><a href="../../../../1_1_1/installationguide.html">Installation Guide</a></li><li class="none"><a href="../../../../1_1_1/quickstartguide.html">QuickStart Guide</a></li><li class="none"><a href="../../../../1_1_1/userguide.html">User Guide</a></li><li class="none"><a h
ref="../../../../1_1_1/pojoguide.html">POJO Guide</a></li><li class="none"><a href="../../../../1_1_1/spring.html">Spring Guide</a></li><li class="none"><a href="../../../../1_1_1/webadminguide.html">Web Administrator's Guide</a></li><li class="none"><a href="../../../../1_1_1/migration.html">Migration Guide (from Axis1)</a></li></ul></li><li class="none"><a href="../../../../1_1/contents.html">Version 1.1</a></li><li class="none"><a href="../../../../1_0/index.html">Version 1.0</a></li><li class="none"><a href="../../../../0_95/index.html">Version 0.95</a></li><li class="none"><a href="../../../../0_94/index.html">Version 0.94</a></li><li class="none"><a href="../../../../0_93/index.html">Version 0.93</a></li></ul></div><div id="menuResources"><h5>Resources</h5><ul><li class="none"><a href="../../../../faq.html">FAQ</a></li><li class="none"><a href="../../../../articles.html">Articles</a></li><li class="none"><a href="http://wiki.apache.org/ws/FrontPage/Axis2/" class="exter
nalLink" title="External Link">Wiki</a></li><li class="none"><a href="../../../../refLib.html">Reference Library</a></li><li class="none"><a href="http://ws.apache.org/axis2/1_1_1/api/index.html" class="externalLink" title="External Link">Online Java Docs</a></li></ul></div><div id="menuGet_Involved"><h5>Get Involved</h5><ul><li class="none"><a href="../../../../overview.html">Overview</a></li><li class="none"><a href="../../../../svn.html">Checkout the Source</a></li><li class="none"><a href="../../../../mail-lists.html">Mailing Lists</a></li><li class="none"><a href="../../../../guidelines.html">Developer Guidelines</a></li><li class="none"><a href="../../../../siteHowTo.html">Build the Site</a></li></ul></div><div id="menuProject_Information"><h5>Project Information</h5><ul><li class="none"><a href="../../../../team-list.html">Project Team</a></li><li class="none"><a href="../../../../issue-tracking.html">Issue Tracking</a></li><li class="none"><a href="http://svn.apache.
org/viewcvs.cgi/webservices/axis2/trunk/?root=Apache-SVN" class="externalLink" title="External Link">Source Code</a></li><li class="none"><a href="../../../../thanks.html">Acknowledgements</a></li><li class="none"><a href="http://www.apache.org/licenses/LICENSE-2.0.html" class="externalLink" title="External Link">License</a></li></ul></div><a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy"><img alt="Built by Maven" src="../../../../images/logos/maven-button-1.png"></img></a></div></div><div id="bodyColumn"><div class="contentBox"><div class="section"><a name="Securing_SOAP_Messages_with_WSS4J"></a><h2>Securing SOAP Messages with WSS4J</h2><p><em>-For Axis2 version 0.94</em></p><p>Axis2 comes with a module based on WSS4J [1] to provide WS-Security
+ </div><div class="clear"><hr></hr></div></div><div id="leftColumn"><div id="navcolumn"><div id="menuAxis2_Java"><h5>Axis2/Java</h5><ul><li class="none"><a href="../../../../index.html">Home</a></li></ul></div><div id="menuDownloads"><h5>Downloads</h5><ul><li class="none"><a href="../../../../download.cgi">Releases</a></li><li class="none"><a href="../../../../modules/index.html">Modules</a></li><li class="none"><a href="../../../../tools/index.html">Tools</a></li></ul></div><div id="menuDocumentation"><h5>Documentation</h5><ul><li class="expanded"><a href="../../../../1_2/contents.html">Version 1.2</a><ul><li class="none"><a href="../../../../1_2/toc.html">Table of Contents</a></li><li class="none"><a href="../../../../1_2/installationguide.html">Installation Guide</a></li><li class="none"><a href="../../../../1_2/quickstartguide.html">QuickStart Guide</a></li><li class="none"><a href="../../../../1_2/userguide.html">User Guide</a></li><li class="none"><a href="../../.
./../1_2/pojoguide.html">POJO Guide</a></li><li class="none"><a href="../../../../1_2/spring.html">Spring Guide</a></li><li class="none"><a href="../../../../1_2/webadminguide.html">Web Administrator's Guide</a></li><li class="none"><a href="../../../../1_2/migration.html">Migration Guide (from Axis1)</a></li></ul></li><li class="none"><a href="../../../../1_1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../../1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../../1_0/index.html">Version 1.0</a></li><li class="none"><a href="../../../../0_95/index.html">Version 0.95</a></li><li class="none"><a href="../../../../0_94/index.html">Version 0.94</a></li><li class="none"><a href="../../../../0_93/index.html">Version 0.93</a></li></ul></div><div id="menuResources"><h5>Resources</h5><ul><li class="none"><a href="../../../../faq.html">FAQ</a></li><li class="none"><a href="../../../../articles.html">Articles</a></li><li class="none"><a href="htt
p://wiki.apache.org/ws/FrontPage/Axis2/" class="externalLink" title="External Link">Wiki</a></li><li class="none"><a href="../../../../refLib.html">Reference Library</a></li><li class="none"><a href="http://ws.apache.org/axis2/1_2/api/index.html" class="externalLink" title="External Link">Online Java Docs</a></li></ul></div><div id="menuGet_Involved"><h5>Get Involved</h5><ul><li class="none"><a href="../../../../overview.html">Overview</a></li><li class="none"><a href="../../../../svn.html">Checkout the Source</a></li><li class="none"><a href="../../../../mail-lists.html">Mailing Lists</a></li><li class="none"><a href="../../../../guidelines.html">Developer Guidelines</a></li><li class="none"><a href="../../../../siteHowTo.html">Build the Site</a></li></ul></div><div id="menuProject_Information"><h5>Project Information</h5><ul><li class="none"><a href="../../../../team-list.html">Project Team</a></li><li class="none"><a href="../../../../issue-tracking.html">Issue Tracking</
a></li><li class="none"><a href="http://svn.apache.org/viewcvs.cgi/webservices/axis2/trunk/?root=Apache-SVN" class="externalLink" title="External Link">Source Code</a></li><li class="none"><a href="../../../../thanks.html">Acknowledgements</a></li><li class="none"><a href="http://www.apache.org/licenses/LICENSE-2.0.html" class="externalLink" title="External Link">License</a></li></ul></div><a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy"><img alt="Built by Maven" src="../../../../images/logos/maven-button-1.png"></img></a></div></div><div id="bodyColumn"><div class="contentBox"><div class="section"><a name="Securing_SOAP_Messages_with_WSS4J"></a><h2>Securing SOAP Messages with WSS4J</h2><p><em>-For Axis2 version 0.94</em></p><p>Axis2 comes with a module based on WSS4J [1] to provide WS-Security
features. This section explains how to engage and configure the security
module. Since the security module inserts handlers in the system specific
pre-dispatch phase, it must be engaged globally. But it is possible to
Modified: webservices/axis2/site/modules/wss4j/0_95/sec-conf/in-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_95/sec-conf/in-sample.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/0_95/sec-conf/in.action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_95/sec-conf/in.action.xsd?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/0_95/sec-conf/in.action.xsd (original)
+++ webservices/axis2/site/modules/wss4j/0_95/sec-conf/in.action.xsd Fri Apr 27 05:39:33 2007
@@ -1,16 +1,16 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
- <xs:element name="action">
- <xs:annotation>
- <xs:documentation>Inflow security 'action' configuration</xs:documentation>
- </xs:annotation>
- <xs:complexType>
- <xs:sequence>
- <xs:element name="items" type="xs:string"/>
- <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="decryptionPropFile" type="xs:string" minOccurs="0"/>
- </xs:sequence>
- </xs:complexType>
- </xs:element>
-</xs:schema>
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Inflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="decryptionPropFile" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Modified: webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-action.xsd?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-action.xsd (original)
+++ webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-action.xsd Fri Apr 27 05:39:33 2007
@@ -1,27 +1,27 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
- <xs:element name="action">
- <xs:annotation>
- <xs:documentation>Outflow security 'action' configuration</xs:documentation>
- </xs:annotation>
- <xs:complexType>
- <xs:sequence>
- <xs:element name="items" type="xs:string"/>
- <xs:element name="user" type="xs:string"/>
- <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="signatureKeyIdentifier" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionKeyIdentifier" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
- <xs:element name="signatureParts" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionParts" type="xs:string" minOccurs="0"/>
- <xs:element name="optimizeParts" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionSymAlgorithm" type="xs:string" minOccurs="0"/>
- <xs:element name="EmbeddedKeyCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionKeyTransportAlgorithm" type="xs:string" minOccurs="0"/>
- <xs:element name="EmbeddedKeyName" type="xs:string" minOccurs="0"/>
- </xs:sequence>
- </xs:complexType>
- </xs:element>
-</xs:schema>
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Outflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="user" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="optimizeParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionSymAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyTransportAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyName" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Modified: webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-sample.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-sample2.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_95/sec-conf/out-sample2.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/0_95/security-module.html
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/0_95/security-module.html?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/0_95/security-module.html (original)
+++ webservices/axis2/site/modules/wss4j/0_95/security-module.html Fri Apr 27 05:39:33 2007
@@ -2,8 +2,8 @@
@import url("../../../style/maven-base.css");
@import url("../../../style/maven-theme.css");</style><link rel="stylesheet" href="../../../style/print.css" type="text/css" media="print"></link><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"></meta></head><body class="composite"><div id="banner"><a href="http://www.apache.org/" id="organizationLogo"><img alt="Apache Software Foundation" src="http://www.apache.org/images/asf-logo.gif"></img></a><a href="http://ws.apache.org/axis2/" id="projectLogo"><img alt="Apache Axis2" src="http://ws.apache.org/axis2/images/axis.jpg"></img></a><div class="clear"><hr></hr></div></div><div id="breadcrumbs"><div class="xleft">
- Last published: 12 January 2007
- | Doc for 1.1.1</div><div class="xright">
+ Last published: 27 April 2007
+ | Doc for 1.2</div><div class="xright">
<a href="../../../index.html">Axis2/Java</a>
@@ -27,7 +27,7 @@
<a href="http://www.apache.org" class="externalLink" title="External Link">Apache </a>
- </div><div class="clear"><hr></hr></div></div><div id="leftColumn"><div id="navcolumn"><div id="menuAxis2_Java"><h5>Axis2/Java</h5><ul><li class="none"><a href="../../../index.html">Home</a></li></ul></div><div id="menuDownloads"><h5>Downloads</h5><ul><li class="none"><a href="../../../download.cgi">Releases</a></li><li class="none"><a href="../../../modules/index.html">Modules</a></li><li class="none"><a href="../../../tools/index.html">Tools</a></li></ul></div><div id="menuDocumentation"><h5>Documentation</h5><ul><li class="expanded"><a href="../../../1_1_1/contents.html">Version 1.1.1</a><ul><li class="none"><a href="../../../1_1_1/toc.html">Table of Contents</a></li><li class="none"><a href="../../../1_1_1/installationguide.html">Installation Guide</a></li><li class="none"><a href="../../../1_1_1/quickstartguide.html">QuickStart Guide</a></li><li class="none"><a href="../../../1_1_1/userguide.html">User Guide</a></li><li class="none"><a href="../../../1_1_1/pojogui
de.html">POJO Guide</a></li><li class="none"><a href="../../../1_1_1/spring.html">Spring Guide</a></li><li class="none"><a href="../../../1_1_1/webadminguide.html">Web Administrator's Guide</a></li><li class="none"><a href="../../../1_1_1/migration.html">Migration Guide (from Axis1)</a></li></ul></li><li class="none"><a href="../../../1_1/contents.html">Version 1.1</a></li><li class="none"><a href="../../../1_0/index.html">Version 1.0</a></li><li class="none"><a href="../../../0_95/index.html">Version 0.95</a></li><li class="none"><a href="../../../0_94/index.html">Version 0.94</a></li><li class="none"><a href="../../../0_93/index.html">Version 0.93</a></li></ul></div><div id="menuResources"><h5>Resources</h5><ul><li class="none"><a href="../../../faq.html">FAQ</a></li><li class="none"><a href="../../../articles.html">Articles</a></li><li class="none"><a href="http://wiki.apache.org/ws/FrontPage/Axis2/" class="externalLink" title="External Link">Wiki</a></li><li class="none"
><a href="../../../refLib.html">Reference Library</a></li><li class="none"><a href="http://ws.apache.org/axis2/1_1_1/api/index.html" class="externalLink" title="External Link">Online Java Docs</a></li></ul></div><div id="menuGet_Involved"><h5>Get Involved</h5><ul><li class="none"><a href="../../../overview.html">Overview</a></li><li class="none"><a href="../../../svn.html">Checkout the Source</a></li><li class="none"><a href="../../../mail-lists.html">Mailing Lists</a></li><li class="none"><a href="../../../guidelines.html">Developer Guidelines</a></li><li class="none"><a href="../../../siteHowTo.html">Build the Site</a></li></ul></div><div id="menuProject_Information"><h5>Project Information</h5><ul><li class="none"><a href="../../../team-list.html">Project Team</a></li><li class="none"><a href="../../../issue-tracking.html">Issue Tracking</a></li><li class="none"><a href="http://svn.apache.org/viewcvs.cgi/webservices/axis2/trunk/?root=Apache-SVN" class="externalLink" title
="External Link">Source Code</a></li><li class="none"><a href="../../../thanks.html">Acknowledgements</a></li><li class="none"><a href="http://www.apache.org/licenses/LICENSE-2.0.html" class="externalLink" title="External Link">License</a></li></ul></div><a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy"><img alt="Built by Maven" src="../../../images/logos/maven-button-1.png"></img></a></div></div><div id="bodyColumn"><div class="contentBox"><div class="section"><a name="Securing_SOAP_Messages_with_WSS4J"></a><h2>Securing SOAP Messages with WSS4J</h2><p><em>-For Axis2 Version 0.95</em></p><p>Axis2 comes with a module based on WSS4J [1] to provide WS-Security
+ </div><div class="clear"><hr></hr></div></div><div id="leftColumn"><div id="navcolumn"><div id="menuAxis2_Java"><h5>Axis2/Java</h5><ul><li class="none"><a href="../../../index.html">Home</a></li></ul></div><div id="menuDownloads"><h5>Downloads</h5><ul><li class="none"><a href="../../../download.cgi">Releases</a></li><li class="none"><a href="../../../modules/index.html">Modules</a></li><li class="none"><a href="../../../tools/index.html">Tools</a></li></ul></div><div id="menuDocumentation"><h5>Documentation</h5><ul><li class="expanded"><a href="../../../1_2/contents.html">Version 1.2</a><ul><li class="none"><a href="../../../1_2/toc.html">Table of Contents</a></li><li class="none"><a href="../../../1_2/installationguide.html">Installation Guide</a></li><li class="none"><a href="../../../1_2/quickstartguide.html">QuickStart Guide</a></li><li class="none"><a href="../../../1_2/userguide.html">User Guide</a></li><li class="none"><a href="../../../1_2/pojoguide.html">POJO
Guide</a></li><li class="none"><a href="../../../1_2/spring.html">Spring Guide</a></li><li class="none"><a href="../../../1_2/webadminguide.html">Web Administrator's Guide</a></li><li class="none"><a href="../../../1_2/migration.html">Migration Guide (from Axis1)</a></li></ul></li><li class="none"><a href="../../../1_1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../1_1/index.html">Version 1.0</a></li><li class="none"><a href="../../../1_0/index.html">Version 1.0</a></li><li class="none"><a href="../../../0_95/index.html">Version 0.95</a></li><li class="none"><a href="../../../0_94/index.html">Version 0.94</a></li><li class="none"><a href="../../../0_93/index.html">Version 0.93</a></li></ul></div><div id="menuResources"><h5>Resources</h5><ul><li class="none"><a href="../../../faq.html">FAQ</a></li><li class="none"><a href="../../../articles.html">Articles</a></li><li class="none"><a href="http://wiki.apache.org/ws/FrontPage/Axis2/" class="externalLink" t
itle="External Link">Wiki</a></li><li class="none"><a href="../../../refLib.html">Reference Library</a></li><li class="none"><a href="http://ws.apache.org/axis2/1_2/api/index.html" class="externalLink" title="External Link">Online Java Docs</a></li></ul></div><div id="menuGet_Involved"><h5>Get Involved</h5><ul><li class="none"><a href="../../../overview.html">Overview</a></li><li class="none"><a href="../../../svn.html">Checkout the Source</a></li><li class="none"><a href="../../../mail-lists.html">Mailing Lists</a></li><li class="none"><a href="../../../guidelines.html">Developer Guidelines</a></li><li class="none"><a href="../../../siteHowTo.html">Build the Site</a></li></ul></div><div id="menuProject_Information"><h5>Project Information</h5><ul><li class="none"><a href="../../../team-list.html">Project Team</a></li><li class="none"><a href="../../../issue-tracking.html">Issue Tracking</a></li><li class="none"><a href="http://svn.apache.org/viewcvs.cgi/webservices/axis2/tr
unk/?root=Apache-SVN" class="externalLink" title="External Link">Source Code</a></li><li class="none"><a href="../../../thanks.html">Acknowledgements</a></li><li class="none"><a href="http://www.apache.org/licenses/LICENSE-2.0.html" class="externalLink" title="External Link">License</a></li></ul></div><a href="http://maven.apache.org/" title="Built by Maven" id="poweredBy"><img alt="Built by Maven" src="../../../images/logos/maven-button-1.png"></img></a></div></div><div id="bodyColumn"><div class="contentBox"><div class="section"><a name="Securing_SOAP_Messages_with_WSS4J"></a><h2>Securing SOAP Messages with WSS4J</h2><p><em>-For Axis2 Version 0.95</em></p><p>Axis2 comes with a module based on WSS4J [1] to provide WS-Security
features. This section explains how to engage and configure the security
module. Since the security module inserts handlers in the system specific
pre-dispatch phase, it must be engaged globally. But it is possible to
Modified: webservices/axis2/site/modules/wss4j/1_0/sec-conf/in-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/1_0/sec-conf/in-sample.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/1_0/sec-conf/in.action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/1_0/sec-conf/in.action.xsd?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/1_0/sec-conf/in.action.xsd (original)
+++ webservices/axis2/site/modules/wss4j/1_0/sec-conf/in.action.xsd Fri Apr 27 05:39:33 2007
@@ -1,16 +1,16 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
- <xs:element name="action">
- <xs:annotation>
- <xs:documentation>Inflow security 'action' configuration</xs:documentation>
- </xs:annotation>
- <xs:complexType>
- <xs:sequence>
- <xs:element name="items" type="xs:string"/>
- <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="decryptionPropFile" type="xs:string" minOccurs="0"/>
- </xs:sequence>
- </xs:complexType>
- </xs:element>
-</xs:schema>
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Inflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="decryptionPropFile" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Modified: webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-action.xsd
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-action.xsd?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
--- webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-action.xsd (original)
+++ webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-action.xsd Fri Apr 27 05:39:33 2007
@@ -1,29 +1,29 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
- <xs:element name="action">
- <xs:annotation>
- <xs:documentation>Outflow security 'action' configuration</xs:documentation>
- </xs:annotation>
- <xs:complexType>
- <xs:sequence>
- <xs:element name="items" type="xs:string"/>
- <xs:element name="user" type="xs:string"/>
- <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
- <xs:element name="signatureKeyIdentifier" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionKeyIdentifier" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
- <xs:element name="signatureParts" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionParts" type="xs:string" minOccurs="0"/>
- <xs:element name="optimizeParts" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionSymAlgorithm" type="xs:string" minOccurs="0"/>
- <xs:element name="EmbeddedKeyCallbackClass" type="xs:string" minOccurs="0"/>
- <xs:element name="encryptionKeyTransportAlgorithm" type="xs:string" minOccurs="0"/>
- <xs:element name="EmbeddedKeyName" type="xs:string" minOccurs="0"/>
- <xs:element name="timeToLive" type="xs:string" minOccurs="0"/>
- </xs:sequence>
- </xs:complexType>
- </xs:element>
-</xs:schema>
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+ <xs:element name="action">
+ <xs:annotation>
+ <xs:documentation>Outflow security 'action' configuration</xs:documentation>
+ </xs:annotation>
+ <xs:complexType>
+ <xs:sequence>
+ <xs:element name="items" type="xs:string"/>
+ <xs:element name="user" type="xs:string"/>
+ <xs:element name="passwordCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="signaturePropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionPropFile" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyIdentifier" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionUser" type="xs:string" minOccurs="0"/>
+ <xs:element name="signatureParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="optimizeParts" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionSymAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyCallbackClass" type="xs:string" minOccurs="0"/>
+ <xs:element name="encryptionKeyTransportAlgorithm" type="xs:string" minOccurs="0"/>
+ <xs:element name="EmbeddedKeyName" type="xs:string" minOccurs="0"/>
+ <xs:element name="timeToLive" type="xs:string" minOccurs="0"/>
+ </xs:sequence>
+ </xs:complexType>
+ </xs:element>
+</xs:schema>
Modified: webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-sample.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-sample.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
Modified: webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-sample2.png
URL: http://svn.apache.org/viewvc/webservices/axis2/site/modules/wss4j/1_0/sec-conf/out-sample2.png?view=diff&rev=533081&r1=533080&r2=533081
==============================================================================
Binary files - no diff available.
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-cvs-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-cvs-help@ws.apache.org