axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Glen Daniels <glen+dated+1067197678.91b...@thoughtcraft.com>
Subject Re: FW: WSS4J - WS-Security Implementation (was Re: axis-wsse)
Date Tue, 21 Oct 2003 19:48:08 GMT
Ah, OK.  Well, two things then - first, we should consider the right
behavior when MessageElements are initialized from DOM Elements.  Should we
clone the Element so that modifications to the resulting MessageElement
don't cause changes in the DOM?  Or should we just say that initializing a
MessageElement/SOAPHeaderElement from a DOM Element makes a "read-only"
version, and you can't mess with it unless you want to mess with the Element
directly?

Second, after taking a quick glance through Sanjesh's code I don't see why
the Element constructor is being used at all.  It looks like the conversion
of the envelope from SOAPEnvelope to DOM isn't strictly necessary, but I
might not be understanding all the implications...  Sanjesh, is there a
reason you aren't just using env.getHeaderByName(WSConstants.WSSE_NS,
"Security") and the like in the Handlers?  It looks like there's a lot of
DOM usage where you could make life significantly easier (and faster,
avoiding conversions) by using the MessageElement APIs....

--Glen

----- Original Message ----- 
From: "Davanum Srinivas" <dims@yahoo.com>
To: <axis-dev@ws.apache.org>
Sent: Tuesday, October 21, 2003 3:08 PM
Subject: Re: FW: WSS4J - WS-Security Implementation (was Re: axis-wsse)


> Glen,
>
> No. If you use SOAPHeaderElement(org.w3c.dom.Element elem) constructor and
then try to set the MU
> and actor. it does not work.
>
> -- dims
>
> --- Glen Daniels <glen+dated+1067187490.1f21c6@thoughtcraft.com> wrote:
> > Hi guys:
> >
> > I don't think there should be problems with setting MU and actor.  I've
used
> > them recently, and we have tests for both which are not failing.
> >
> > Sanjesh, have you debugged your code to see if the correct values are
being
> > passed in to those APIs?
> >
> > --Glen
> >
> > ----- Original Message ----- 
> > From: "Davanum Srinivas" <dims@yahoo.com>
> > To: <axis-dev@ws.apache.org>
> > Sent: Tuesday, October 21, 2003 12:07 PM
> > Subject: RE: FW: WSS4J - WS-Security Implementation (was Re: axis-wsse)
> >
> >
> > > Sanjesh,
> > >
> > > Updated CVS with your code. I just added TODO items for now, till i
get
> > more time to fix the
> > > problems in axis (unable to set mustunderstand and actor).
> > >
> > > Thanks
> > > -- dims
> > >
> > > --- Sanjesh Pathak <sanjesh@soapknox.com> wrote:
> > > > Hi Dims,
> > > >
> > > > Here is my first attempt at building UsernameToken add and
> > > > authentication handler. The zip file contains patch, handlers and a
> > > > sample directory that tests it.
> > > >
> > > > There is this one thing that needs to be tweaked and I need your
help. I
> > > > was not able to set mustunderstand and actor through
SOAPHeaderElement
> > > > in WSSUsernameTokenAddHandler (see comment in the code). Apart from
that
> > > > everything works fine.
> > > >
> > > > This is the first time I have ever submitted code and patch to the
list.
> > > > So please go easy on me if there are any faults :)
> > > >
> > > > Sanjesh
> > > >
> > > >
> > > > -----Original Message-----
> > > > From: Davanum Srinivas [mailto:dims@yahoo.com]
> > > > Sent: Tuesday, October 14, 2003 1:04 PM
> > > > To: axis-dev@ws.apache.org
> > > > Subject: Re: FW: WSS4J - WS-Security Implementation (was Re:
axis-wsse)
> > > >
> > > > Sanjesh,
> > > >
> > > > In the long run, we should be able to do both (handler param as well
as
> > > > call's setproperty).
> > > > Patches against the code base in CVS would be REALLY welcome.
> > > >
> > > > -- dims
> > > >
> > > > --- Sanjesh Pathak <sanjesh@soapknox.com> wrote:
> > > > > Dims,
> > > > >
> > > > > I have been working on developing handlers to add UsernameToken
header
> > > > > and also to do UsernameToken header authentication according to
> > > > > WS-Security spec. What I have done is similar to what Filippo is
> > > > doing.
> > > > > The only difference is that I am trying to allow users to
configure
> > > > the
> > > > > UsernameToken header through handler's parameters. Filippo is
doing
> > > > > through Call's setProperty method.
> > > > >
> > > > > I wanted to do some more work on the UsernameToken header
> > > > auhentication
> > > > > handler (WSSUsernameTokenAuthenticationHandler.java) before
sending
> > > > the
> > > > > code to the list. Since there is now interest on this subject I am
> > > > > sending it now. As it stands the authentication handler just shows
a
> > > > > proof of concept that it is working. Although more work is needed
on
> > > > it.
> > > > >
> > > > > I am sending the code here and would appreciate any feedback you
might
> > > > > have on it. I am also going to look into your WSS4J code and see
how I
> > > > > can integrate this into it.
> > > > >
> > > > > Thanks,
> > > > > Sanjesh
> > > > >
> > > > >
> > > > >
> > > > > -----Original Message-----
> > > > > From: Davanum Srinivas [mailto:dims@yahoo.com]
> > > > > Sent: Tuesday, October 14, 2003 6:39 AM
> > > > > To: haddadc@apache.org; berin@ozemail.com.au; kiyer3@yahoo.com;
> > > > > Werner.Dittmann@siemens.com; moorebr@us.ibm.com;
jlorgal@netscape.net;
> > > > > pankaj4oss@j2ee-security.net; joachim@progs.be;
> > > > > alerner@grandcentral.com; bhushank@wrq.com;
> > > > > vtpavan@vijayaba.cse.mrt.ac.lk; sanjesh@soapknox.com; ml@eley.it;
> > > > > prasanta@netscape.com; stefanhenke@gmx.de; Geza.Szocs@nokia.com;
> > > > > djm@it-innovation.soton.ac.uk; jgramlich@piocon.com;
anne@manes.net;
> > > > > krishnakumarb@mindtree.com; anderson_jonathan@bah.com;
> > > > steve@naweb.com;
> > > > > riho@cisco.com; nisha.menon@wipro.com; NBhatia@sapient.com
> > > > > Subject: Fwd: WSS4J - WS-Security Implementation (was Re:
axis-wsse)
> > > > >
> > > > > Folks,
> > > > >
> > > > > Am not sure how many of you are following the Axis dev and user
> > > > mailing
> > > > > lists actively. Am sending
> > > > > this email as you expressed interest in a WS-Security Impl at
Apache
> > > > > (dug through the the mail
> > > > > archives to get harvest this list). I will not send any other
email to
> > > > > you directly, discussions
> > > > > etc will be on Axis developers mailing list as usual.
> > > > >
> > > > > Thanks,
> > > > > dims
> > > > >
> > > > > --- Davanum Srinivas <dims@yahoo.com> wrote:
> > > > > > Date: Tue, 14 Oct 2003 05:14:15 -0700 (PDT)
> > > > > > From: Davanum Srinivas <dims@yahoo.com>
> > > > > > Subject: WSS4J - WS-Security Implementation (was Re: axis-wsse)
> > > > > > To: axis-dev@ws.apache.org
> > > > > >
> > > > > > Filippo, Pankaj, Team,
> > > > > >
> > > > > > To jumpstart work on WSS4J
> > > > > (http://nagoya.apache.org/wiki/apachewiki.cgi?SecurityProposal) i
> > > > > > have
> > > > > > checked in my sandbox code for WS-Security to ws-axis/contrib
> > > > > > (http://cvs.apache.org/viewcvs/ws-axis/contrib/wss4j/). Please
feel
> > > > > free to send/commit patches
> > > > > > for codebase
> > > > >
> > > >
(http://nagoya.apache.org/wiki/apachewiki.cgi?AxisProjectPages/SubmitPat
> > > > > ches).
> > > > > >
> > > > > > Thanks,
> > > > > > dims
> > > > > >
> > > > > > --- Filippo Vitale <ml@eley.it> wrote:
> > > > > > > Hi,
> > > > > > > I'm writing some Axis Handler for implementing the WS-Security
> > > > spec.
> > > > > > >
> > > > > > > In this moment I'm putting on-line the first release that
cover
> > > > the
> > > > > security
> > > > > > > token:
> > > > > > > "UsernameToken" in all the 4 password send technique described
in
> > > > > the "Web
> > > > > > > Service security UsernameToken Profile - working draft
4, 11
> > > > August
> > > > > 2003".
> > > > > > >
> > > > > > > I created also a sample for accessing "The Microsoft.com
Web
> > > > > Service"
> > > > > > > (ws.microsoft.com) and a quick start at
> > > > > > > http://axis-wsse.sourceforge.net/#demo
> > > > > > >
> > > > > > > I hope this work will be usefull to some developer.
> > > > > > > Apache Axis team, you can feel free to think about merging
it
to
> > > > the
> > > > > Axis
> > > > > > > project.
> > > > > > >
> > > > > > > Suggestions and comments are always welcome,
> > > > > > >     Filippo Vitale
> > > > > > >
> > > > > >
> > > > > >
> > > > > > =====
> > > > > > Davanum Srinivas - http://webservices.apache.org/~dims/
> > > > >
> > > > >
> > > > > =====
> > > > > Davanum Srinivas - http://webservices.apache.org/~dims/
> > > > >
> > > >
> > > > > ATTACHMENT part 2 application/x-zip-compressed name=simple.zip
> > > >
> > > >
> > > >
> > > > =====
> > > > Davanum Srinivas - http://webservices.apache.org/~dims/
> > > >
> > >
> > > > ATTACHMENT part 2 application/x-zip-compressed name=code.zip
> > >
> > >
> > >
> > > =====
> > > Davanum Srinivas - http://webservices.apache.org/~dims/
> > >
> > >
>
>
> =====
> Davanum Srinivas - http://webservices.apache.org/~dims/
>
>

Mime
View raw message