axis-java-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Wishing Carebear <wishing.careb...@gmail.com>
Subject Re: wss4j with Axis 1( no Axis2) comunicating with WSE3 configured webservice
Date Fri, 29 May 2009 22:03:29 GMT
Hi Jose:
Have couple of questions for you
1) I have shown the .config file from the WSE3 in my first email. Is it
possible to get the equivalent .wsdd file
2) What i have is a .NET service and axis client.
3) I have the certificate from  webservice. How should I use this in the
client.wsdd. In otherwords, not sure what information I need to provide for
the encryptionuser and crypto.properties. Any tutorial on how to use the
certificate from .NET with wss4j and Axis.

Thanks,
Ravi

2009/5/29 José Ferreiro <jose.ferreiro@gmail.com>

> Hello!
>
> I successfully made a secure dotnet client using the dotnet. 2.0 and Web
> services enhancement 3.0 (WSE 3.0) talking to axis 1.4 and wss4j 1.5.3 [1]
> with *x509 v3 certificates*.
>
> See this page which helps me as a start [2]! There is the equivalent file
> of client.wsdd in the dotnet framework nammed as web.config. In my project I
> called it [3] wse3PolicyCache.config. The name does not matter...
>
> Happy Axis and Happy coding!
>
> José Ferreiro
>
>
>
> [1]-
> http://magnot.blogspot.com/2008/04/secure-web-services-interoperability.html
> [2]- http://erlend.oftedal.no/blog/?blogid=12
> [3]-
> http://bp1.blogger.com/_SFCs1WYrqtY/SBXPETktd3I/AAAAAAAAAXE/nNI7mNpQS6c/s1600-h/visualStudio.png
> [4]-
> http://bp0.blogger.com/_SFCs1WYrqtY/SBXILDktdzI/AAAAAAAAAWk/9wqequ_9vNk/s1600-h/pfx-pkcs12-1.PNG
>
>
> On Fri, May 29, 2009 at 6:39 PM, Wishing Carebear <
> wishing.carebear@gmail.com> wrote:
>
>> Hello:
>> I'm using wss4j with Apache Axis 1.4 (no Axis2). Wondering if someone
>> could provide what should be the equivalent client.wsdd file for the
>> following policy file. I have tried posting this in wss4j newsgroup but
>> could not get any response. Hoping some one could give me some pointers.
>> Thanks.
>>
>> <policies xmlns="http://schemas.microsoft.com/wse/2005/06/policy">
>>   <extensions>
>>     <extension name="usernameForCertificateSecurity"
>> type="Microsoft.Web.Services3.Design.UsernameForCertificateAssertion,
>> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
>> PublicKeyToken=31bf3856ad364e35" />
>>     <extension name="x509"
>> type="Microsoft.Web.Services3.Design.X509TokenProvider,
>> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
>> PublicKeyToken=31bf3856ad364e35" />
>>     <extension name="requireActionHeader"
>> type="Microsoft.Web.Services3.Design.RequireActionHeaderAssertion,
>> Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
>> PublicKeyToken=31bf3856ad364e35" />
>>   </extensions>
>>   <policy name="usernameTokenSecurity">
>>     <usernameForCertificateSecurity establishSecurityContext="true"
>> renewExpiredSecurityContext="true" requireSignatureConfirmation="false"
>> messageProtectionOrder="SignBeforeEncrypt" requireDerivedKeys="true"
>> ttlInSeconds="300">
>>       <serviceToken>
>>         <x509 storeLocation="LocalMachine" storeName="AddressBook"
>> findValue="CN=TMPDMDevelopment" findType="FindBySubjectDistinguishedName" />
>>       </serviceToken>
>>       <protection>
>>         <request signatureOptions="IncludeAddressing, IncludeTimestamp,
>> IncludeSoapBody" encryptBody="true" />
>>         <response signatureOptions="IncludeAddressing, IncludeTimestamp,
>> IncludeSoapBody" encryptBody="true" />
>>         <fault signatureOptions="IncludeAddressing, IncludeTimestamp,
>> IncludeSoapBody" encryptBody="false" />
>>       </protection>
>>     </usernameForCertificateSecurity>
>>     <requireActionHeader />
>>   </policy>
>> </policies>
>>
>
>
>
>

Mime
View raw message