axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Thilina Buddhika (JIRA)" <j...@apache.org>
Subject [jira] Commented: (RAMPART-25) Abilty to dynamically set Encryption certificate on client
Date Tue, 21 Dec 2010 12:02:00 GMT

    [ https://issues.apache.org/jira/browse/RAMPART-25?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12973600#action_12973600
] 

Thilina Buddhika commented on RAMPART-25:
-----------------------------------------

Since we have the ability create Rampart Configuration programmatically and attach it to the
policy, we can mark this issue as resolved. This blog provides a reference on how to do it
[1].

Thanks,
Thilina

[1] - http://blog.thilinamb.com/2009/12/how-to-build-rampart-config.html

> Abilty to dynamically set Encryption certificate on client
> ----------------------------------------------------------
>
>                 Key: RAMPART-25
>                 URL: https://issues.apache.org/jira/browse/RAMPART-25
>             Project: Rampart
>          Issue Type: Improvement
>          Components: rampart-core
>    Affects Versions: 1.1, 1.2, 1.3
>            Reporter: Hans G Knudsen
>
> Hi!
> I was looking for a way to dynamically specify the encryption certificate in a client,
instead of specifying it statically in the RampartConfig by defining the 'encryptionUser'.
> Looking at RampartUtil.setEncryptionUser it looked like the only way to do it, was to
resemble the 'useReqSigCert' option which makes the server use the received signature certificate
for encryption on a reply..
> This would look something like this...
>                 X509Certificate cert = fetchFromLdap( recipient );
>                 Vector results = new Vector();
>                 WSSecurityEngineResult wsser = new WSSecurityEngineResult(WSConstants.SIGN,
null, cert, null, new byte[0]);
>                 results.add( wsser );
>                 
>                 WSHandlerResult wshr = new WSHandlerResult("STRING", results);
>                 Vector resultObj = new Vector();
>                 resultObj.add( wshr );
>                 
>                 clientOptions.setProperty( WSHandlerConstants.RECV_RESULTS, resultObj
);
> Would It be usefull to be able to specify the certificate as a Rampart parameter/property
- something like :
>                clientOptions.serProperty( RampartMessageData.ENCRYPTION_CERTIFICATE,
cert );
> and have RampartUtil check 'encryptionUser' for eg 'useParamCert' and use the transfered
certificate for outgoing encryption.
> Should I supply a proposal as a diff ??
> /hans

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


---------------------------------------------------------------------
To unsubscribe, e-mail: java-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: java-dev-help@axis.apache.org


Mime
View raw message