Hi Pete, Please look at samples/policy/sample02 in Rampart. Look at the policy.xml loaded by the client.
In sample02, response message is signed by the service's private key. Therefore it can be verified using the certificate of the service. In the policy.xml, it is indicated by the following parameter. <ramp:encryptionUser>service</ramp:encryptionUser> Actually encryptionUser's certificate is used for validating the signature of the response message. Cheers, Dimuthu On Wed, 2007-07-11 at 13:27 +0100, Peter Thomas wrote: > second, service, certificate. Unfortunately this fails with: "The > signature verification failed". I'm assuming this is because I am not > specifying the service certificate anywhere (neither is it specified > in the response from the service). > > I can't seem to find anywhere to specify the certificate details to > validate the response? > > Any help would be greatly appreciated! > > Pete > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
