1. 首頁
  2. 問答
  3. Axis 2和Rampart如何在policy.xml中指定傳出安全性

Axis 2和Rampart如何在policy.xml中指定傳出安全性

2012-06-05 23 views
0

我正在使用Rampart生成請求。 我有一個policy.xml用於應用安全性。Axis 2和Rampart如何在policy.xml中指定傳出安全性

由於Rampart正在尋找安全性頭文件,但是其中一個不存在,所以我收到了響應異常。

我仍然可以使用我的policy.xml並指定我不需要入站安全性的事實,還是需要執行其他操作?

政策:

<wsp:Policy wsu:Id="SigOnly" 
     xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" 
     xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"> 
<wsp:ExactlyOne> 
    <wsp:All> 
     <sp:AsymmetricBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> 
      <wsp:Policy> 
       <sp:InitiatorToken> 
        <wsp:Policy> 
         <sp:X509Token 
           sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"> 
          <wsp:Policy> 
           <sp:RequireThumbprintReference/> 
           <sp:WssX509V3Token10/> 
          </wsp:Policy> 
         </sp:X509Token> 
        </wsp:Policy> 
       </sp:InitiatorToken> 
       <sp:RecipientToken> 
        <wsp:Policy> 
         <sp:X509Token 
           sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never"> 
          <wsp:Policy> 
           <sp:RequireThumbprintReference/> 
           <sp:WssX509V3Token10/> 
          </wsp:Policy> 
         </sp:X509Token> 
        </wsp:Policy> 
       </sp:RecipientToken> 
       <sp:AlgorithmSuite> 
        <wsp:Policy> 
         <sp:TripleDesRsa15/> 
        </wsp:Policy> 
       </sp:AlgorithmSuite> 
       <sp:Layout> 
        <wsp:Policy> 
         <sp:Strict/> 
        </wsp:Policy> 
       </sp:Layout> 
       <!-- <sp:IncludeTimestamp/> --> 
       <sp:OnlySignEntireHeadersAndBody/> 
      </wsp:Policy> 
     </sp:AsymmetricBinding> 
     <sp:Wss10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> 
      <wsp:Policy> 
       <sp:MustSupportRefKeyIdentifier/> 
       <sp:MustSupportRefIssuerSerial/> 
      </wsp:Policy> 
     </sp:Wss10> 
     <sp:SignedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> 
      <sp:Body/> 
     </sp:SignedParts> 
     <ramp:RampartConfig xmlns:ramp="http://ws.apache.org/rampart/policy"> 
      <ramp:user>ctr</ramp:user> 
      <ramp:encryptionUser>ctr</ramp:encryptionUser> 
      <ramp:passwordCallbackClass>com.gtnet.rampart.PWCBHandler 
      </ramp:passwordCallbackClass> 

      <ramp:signatureCrypto> 
       <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin"> 
        <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property> 
        <ramp:property name="org.apache.ws.security.crypto.merlin.file">build\resources\qw.jks</ramp:property> 
        <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">123123</ramp:property> 
       </ramp:crypto> 
      </ramp:signatureCrypto> 
     </ramp:RampartConfig> 

    </wsp:All> 
</wsp:ExactlyOne>

來源

2012-06-05 Gribbler

回答

相關問題

 相關問題