Re: Rampart 1.1 - Sample07 as policy

Sun, 18 Feb 2007 19:37:54 -0800 

Hi Riis,

Please have a look at samples/policy folder in rampart 1.1
distribution. It has 4 samples and they could help you.

Cheers,
Dimuthu


On 2/16/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:


Hi,

I'm trying to change my implementation to use policies instead of the old
way.
But I have some problems figuring it out.

If I should implement sample07 as policies instead of the below way, what
would it take?
Could some one give an example of "Sample07" from the Rampart 1.1
distribution as policies?

Client (axis.conf)
    <parameter name="OutflowSecurity">
      <action>
        <items>Timestamp Encrypt Signature</items>
        <user>client</user>

<passwordCallbackClass>org.apache.rampart.samples.sample07.PWCBHandler</passwordCallbackClass>
        <signaturePropFile>client.properties</signaturePropFile>
        <signatureKeyIdentifier>DirectReference</signatureKeyIdentifier>
        <encryptionKeyIdentifier>SKIKeyIdentifier</encryptionKeyIdentifier>
        <encryptionUser>service</encryptionUser>
      </action>
    </parameter>

    <parameter name="InflowSecurity">
      <action>
        <items>Timestamp Encrypt Signature</items>

<passwordCallbackClass>org.apache.rampart.samples.sample07.PWCBHandler</passwordCallbackClass>
        <signaturePropFile>client.properties</signaturePropFile>
      </action>
    </parameter>

Service (service.conf)
    <parameter name="InflowSecurity">
      <action>
        <items>Timestamp Encrypt Signature</items>

<passwordCallbackClass>org.apache.rampart.samples.sample07.PWCBHandler</passwordCallbackClass>
        <signaturePropFile>service.properties</signaturePropFile>
      </action>
    </parameter>

    <parameter name="OutflowSecurity">
      <action>
        <items>Timestamp Encrypt Signature</items>
        <user>service</user>

<passwordCallbackClass>org.apache.rampart.samples.sample07.PWCBHandler</passwordCallbackClass>
        <signaturePropFile>service.properties</signaturePropFile>
        <signatureKeyIdentifier>DirectReference</signatureKeyIdentifier>
        <encryptionKeyIdentifier>SKIKeyIdentifier</encryptionKeyIdentifier>
        <encryptionUser>useReqSigCert</encryptionUser>
      </action>
    </parameter>

Regards
Multi-Support A/S

Torben Riis
--------------------------------------------------------------------
Phone +45 96 600 600, Fax +45 96 600 601
E-mail: [EMAIL PROTECTED]
http://www.multi-support.com


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to