cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r828463 - in /websites/production/cxf/content: cache/docs.pageCache docs/ws-securitypolicy.html
Date Thu, 09 Aug 2012 14:49:23 GMT
Author: buildbot
Date: Thu Aug  9 14:49:22 2012
New Revision: 828463

Log:
Production update by buildbot for cxf

Modified:
    websites/production/cxf/content/cache/docs.pageCache
    websites/production/cxf/content/docs/ws-securitypolicy.html

Modified: websites/production/cxf/content/cache/docs.pageCache
==============================================================================
Binary files - no diff available.

Modified: websites/production/cxf/content/docs/ws-securitypolicy.html
==============================================================================
--- websites/production/cxf/content/docs/ws-securitypolicy.html (original)
+++ websites/production/cxf/content/docs/ws-securitypolicy.html Thu Aug  9 14:49:22 2012
@@ -163,7 +163,7 @@ Apache CXF -- WS-SecurityPolicy
 <h4><a shape="rect" name="WS-SecurityPolicy-BooleanWSSecurityconfigurationtags%2Ce.g.thevalueshouldbe%22true%22or%22false%22."></a>Boolean
WS-Security configuration tags, e.g. the value should be "true" or "false".</h4>
 
 <div class="table-wrap">
-<table class="confluenceTable"><tbody><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.validate.token </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to validate the password of a received UsernameToken or not.
The default is true.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd">
ws-security.enableRevocation </td><td colspan="1" rowspan="1" class="confluenceTd">
Whether to enable Certificate Revocation List (CRL) checking or not when verifying trust in
a certificate. The default value is "false".</td></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"> ws-security.username-token.always.encrypted </td><td
colspan="1" rowspan="1" class="confluenceTd"> Whether to always encrypt UsernameTokens
that are defined as a SupportingToken. The default is true. This should not be set to false
in a production environment, as it exposes the password (or the digest of the password) on
the wire.</td></tr><tr><td colspan="1" rowspan="1" clas
 s="confluenceTd"> ws-security.is-bsp-compliant </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to ensure compliance with the Basic Security Profile (BSP)
1.1 or not. The default value is "true". </td></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"> ws-security.self-sign-saml-assertion </td><td
colspan="1" rowspan="1" class="confluenceTd"> Whether to self-sign a SAML Assertion or
not. If this is set to true, then an enveloped signature will be generated when the SAML Assertion
is constructed. The default is false. </td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.enable.nonce.cache </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to cache UsernameToken nonces. See <a shape="rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_NONCE_CACHE">here</a>
for more information.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd">
ws-security.enable.timestamp.
 cache </td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to cache
Timestamp Created Strings. See <a shape="rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_TIMESTAMP_CACHE">here</a>
for more information.</td></tr></tbody></table>
+<table class="confluenceTable"><tbody><tr><td colspan="1" rowspan="1"
class="confluenceTd"> constant </td><td colspan="1" rowspan="1" class="confluenceTd">
default </td><td colspan="1" rowspan="1" class="confluenceTd"> definition</td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"> ws-security.validate.token </td><td
colspan="1" rowspan="1" class="confluenceTd"> true </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to validate the password of a received UsernameToken or not.</td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"> ws-security.enableRevocation </td><td
colspan="1" rowspan="1" class="confluenceTd"> false </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to enable Certificate Revocation List (CRL) checking or not
when verifying trust in a certificate.</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.username-token.always.encrypted </td><td colspan="1"
rowspan="1" class="confluenceTd"> true </t
 d><td colspan="1" rowspan="1" class="confluenceTd"> Whether to always encrypt UsernameTokens
that are defined as a SupportingToken. This should not be set to false in a production environment,
as it exposes the password (or the digest of the password) on the wire.</td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"> ws-security.is-bsp-compliant </td><td
colspan="1" rowspan="1" class="confluenceTd"> true </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to ensure compliance with the Basic Security Profile (BSP)
1.1 or not.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd">
ws-security.self-sign-saml-assertion </td><td colspan="1" rowspan="1" class="confluenceTd">
false </td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to self-sign
a SAML Assertion or not. If this is set to true, then an enveloped signature will be generated
when the SAML Assertion is constructed. </td></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"> ws
 -security.enable.nonce.cache </td><td colspan="1" rowspan="1" class="confluenceTd">
(varies) </td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to cache
UsernameToken nonces. See <a shape="rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_NONCE_CACHE">here</a>
for more information.</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd">
ws-security.enable.timestamp.cache </td><td colspan="1" rowspan="1" class="confluenceTd">
(varies) </td><td colspan="1" rowspan="1" class="confluenceTd">  Whether to cache
Timestamp Created Strings. See <a shape="rect" href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_TIMESTAMP_CACHE">here</a>
for more information.</td></tr></tbody></table>
 </div>
 
 



Mime
View raw message