ws-fx-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Andrew Kinard <>
Subject Re: Can I include a Cert in a SOAP Header using WSS4J
Date Thu, 28 Jul 2005 21:54:42 GMT
Thanks Ashok,

One more question: So if I have my server send a message with the  
cert in the header, is the client still required to have the cert in  
it's keystore to validate the sender?  If not, what WSDD and properties are required by the client?

Thanks for the help,
Andrew Kinard

On Jul 28, 2005, at 11:35 AM, Ashok Shah wrote:

> Andrew,
> You could set a parameter WSHandlerConstants.SIG_KEY_ID to  
> "DirectReference"  in deplyoment file. This would attach the  
> cetificate as Binary data in the soap message.
> Cheers,
> Ashok.
> Andrew Kinard wrote:
>> Hello All,
>> I have a project in which I would like to send a signed message to  
>> a  client and include a cert in the SOAP header.  Basically, I  
>> have a  need to verify the identity of the sender without keeping  
>> a local  keystore.  I have used WSS4J for sending a signed  
>> message, but have  not found any documentation on including the  
>> cert in the SOAP header,  which I think is covered by the XML- 
>> Signature spec.
>> Does anyone have any information on how I might do this?
>> Regards,
>> Andrew Kinard
>> AK;-)

View raw message