I am using Axis2-1.3 and Rampart 1.3.
I am the client and my requests need to be signed.
My axis.client.xml includes the following
<module ref="rampart" />
<parameter name="OutflowSecurity">
<action>
<items>Signature</items>
<user>wally</user>
<signaturePropFile>crypto.properties</signaturePropFile>
<passwordCallbackClass>net.idt.svp.security.PWCallback</passwordCallbackClas
s>
<signatureKeyIdentifier>DirectReference</signatureKeyIdentifier>
</action>
</parameter>
<parameter name="InflowSecurity">
<action>
<items>Signature</items>
<signaturePropFile>crypto.properties</signaturePropFile>
</action>
</parameter>
My crypto.properties
org.apache.ws.security.crypto.provider=org.apache.ws.security.components.cry
pto.Merlin
org.apache.ws.security.crypto.merlin.keystore.type=jks
org.apache.ws.security.crypto.merlin.file=J:\svp_prime\trunk\security\test.j
ks
org.apache.ws.security.crypto.merlin.keystore.password=pswd
My Client includes the following:
_serviceClient.getOptions().setTo(new
org.apache.axis2.addressing.EndpointReference(targetEndpoint));
_serviceClient.getOptions().setUseSeparateListener(useSeparateListener);
StAXOMBuilder builder = new StAXOMBuilder("resources/policy.xml");
Policy clientPolicy =
PolicyEngine.getPolicy(builder.getDocumentElement());
_serviceClient.getOptions().setProperty(RampartMessageData.KEY_RAMPART_POLIC
Y, clientPolicy);
_serviceClient.engageModule("rampart");
My problem is that I have no clue how to set up the policy.xml. Rampart's
examples do not include an example of pure signature only (no timestamp).
Can someone supply me with an example?
Thanks.
