Hi Hailong Wang, There are two ways in which we can configure Rampart to include a UsernameToken.
One way is by using the configuration file which is Axis specific. Please have a look at "samples/basic/samples02/client.axis2.xml" inside the rampart folder. Look at this part [1] The other is using a policy file as per policy specification available here[2]. Now look at the "samples/policy/sample01/policy.xml" file. Same applies to Encrypt, Signature, TimeStamp. We can basically configure Rampart in two methods - one method is using the client.axis2.xml file or the other method is using policy. The new trend is to use policy. Using the axis2.xml file for security configuration is deprecated. Cheers, Dimuthu http://wso2.org [1] <module ref="rampart" /> <parameter name="OutflowSecurity"> <action> <items>UsernameToken Timestamp</items> <user>bob</user> <passwordCallbackClass>org.apache.rampart.samples.sample02.PWCBHandler</passwordCallbackClass> </action> </parameter> [2]http://specs.xmlsoap.org/ws/2005/07/securitypolicy/ws-securitypolicy.pdf On 2/16/07, Wang, Hailong (NIH/CIT) [C] <[EMAIL PROTECTED]> wrote:
Hi, Could somebody explain to me what's the difference between basic fold and policy fold under rampart-1.1\samples\ fold? Both of them can use UsernameToken, Encrypt, Signature, TimeStamp. I got confused. Thanks in advance. Hailong Wang National Database for Autism Research(NDAR) NIH/CIT/DECA 9000 Rockville Pike, Bld 12A/Room 2027 Bethesda, MD 20892 Phone: 301-402-3045 Fax: 301-480-0028 Email: [EMAIL PROTECTED] URL: http://ndar.nih.gov
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
