axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject svn commit: r289616 - in /webservices/axis2/trunk/java/modules/samples: maven.xml resources/security/README.txt
Date Fri, 16 Sep 2005 17:36:56 GMT
Author: ruchithf
Date: Fri Sep 16 10:36:49 2005
New Revision: 289616

Adding README.txt for the security sample


Modified: webservices/axis2/trunk/java/modules/samples/maven.xml
--- webservices/axis2/trunk/java/modules/samples/maven.xml (original)
+++ webservices/axis2/trunk/java/modules/samples/maven.xml Fri Sep 16 10:36:49 2005
@@ -289,7 +289,7 @@
 	<ant:copy file="resources/security/client.axis2.xml" tofile="target/samples/security/client_repo/axis2.xml"/>
 	<ant:copy file="target/security/SecureService.aar" tofile="target/samples/security/SecureService.aar"/>
 	<ant:copy file="target/security/secUtil.jar" tofile="target/samples/security/secUtil.jar"/>
+	<ant:copy file="resources/security/README.txt" tofile="target/samples/security/README.txt"/>


Added: webservices/axis2/trunk/java/modules/samples/resources/security/README.txt
--- webservices/axis2/trunk/java/modules/samples/resources/security/README.txt (added)
+++ webservices/axis2/trunk/java/modules/samples/resources/security/README.txt Fri Sep 16
10:36:49 2005
@@ -0,0 +1,44 @@
+Using WS-Security with Axis2
+This sample uses the WSS4J module with the addressing module to secure the messages as follows:
+First a Timestam is added to the message and then the Timestamp and the WS-addressing headers
are signed with the sender's private key.
+The the message body is encrypted with the receiver's public key. The CipherValue of the
encrpted body is included as a MTOM part.
+Setup the service
+Please follow each of the following steps:
+1.) To engage the security (WSS4J) module add the following line to axis2.xml in axis
+	<module ref="security"/>
+	IMPORTANT: Please read [NOTE 1]
+2.) Copy samples/securitySecureService.aar to axis2/WEB-INF/services/ directory
+3.) Copy samples/securitysecUtil.jar to axis2/WEB-INF/lib
+4.) Start Tomcat
+Run the sample
+To run the sample client run the securitySample ant task in the ant build file available
in the samples directory.
+	$ ant securitySample
+Then if everything goes well you will see the following output:
+Build file: build.xml
+     [java] Response: <example1:echo xmlns:example1=""><example1:Text>Axis2
Echo String </example1:Text></example1:echo>
+     [java] SecureService Invocation successful :-)
+Total time: XX seconds
+If you want to see the signed and encrypted messages fireup tcpmon and change the securitySample
ant task in the samples directory to set the required port number.
+NOTE 1: When the WSS4J module is engaged it will be engaged globally. Then all services will
require them to be provide configuration parameters for the security module. If a certain
service(s) does not require any WS-Security functionality the relevant services.xml file should
contain the following entries for service(s) in defined.
+    <parameter name="OutAction" locked="false">NoSecurity</parameter>
+    <parameter name="InAction" locked="false">NoSecurity</parameter>
+The above two lines will disable the WSS4J module for the defined scope.

View raw message