Author: buildbot
Date: Thu Aug 9 14:49:22 2012
New Revision: 828463
Log:
Production update by buildbot for cxf
Modified:
websites/production/cxf/content/cache/docs.pageCache
websites/production/cxf/content/docs/ws-securitypolicy.html
Modified: websites/production/cxf/content/cache/docs.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/cxf/content/docs/ws-securitypolicy.html
==============================================================================
--- websites/production/cxf/content/docs/ws-securitypolicy.html (original)
+++ websites/production/cxf/content/docs/ws-securitypolicy.html Thu Aug 9
14:49:22 2012
@@ -163,7 +163,7 @@ Apache CXF -- WS-SecurityPolicy
<h4><a shape="rect"
name="WS-SecurityPolicy-BooleanWSSecurityconfigurationtags%2Ce.g.thevalueshouldbe%22true%22or%22false%22."></a>Boolean
WS-Security configuration tags, e.g. the value should be "true" or
"false".</h4>
<div class="table-wrap">
-<table class="confluenceTable"><tbody><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.validate.token </td><td colspan="1"
rowspan="1" class="confluenceTd"> Whether to validate the password of a
received UsernameToken or not. The default is true.</td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"> ws-security.enableRevocation
</td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to enable
Certificate Revocation List (CRL) checking or not when verifying trust in a
certificate. The default value is "false".</td></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"> ws-security.username-token.always.encrypted
</td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to always
encrypt UsernameTokens that are defined as a SupportingToken. The default is
true. This should not be set to false in a production environment, as it
exposes the password (or the digest of the password) on the
wire.</td></tr><tr><td colspan="1" rowspan="1" clas
s="confluenceTd"> ws-security.is-bsp-compliant </td><td colspan="1"
rowspan="1" class="confluenceTd"> Whether to ensure compliance with the Basic
Security Profile (BSP) 1.1 or not. The default value is "true".
</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd">
ws-security.self-sign-saml-assertion </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to self-sign a SAML Assertion or not. If this is
set to true, then an enveloped signature will be generated when the SAML
Assertion is constructed. The default is false. </td></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"> ws-security.enable.nonce.cache </td><td
colspan="1" rowspan="1" class="confluenceTd"> Whether to cache UsernameToken
nonces. See <a shape="rect"
href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_NONCE_CACHE";>here</a>
for more information.</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.enable.timestamp.
cache </td><td colspan="1" rowspan="1" class="confluenceTd"> Whether to cache
Timestamp Created Strings. See <a shape="rect"
href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_TIMESTAMP_CACHE";>here</a>
for more information.</td></tr></tbody></table>
+<table class="confluenceTable"><tbody><tr><td colspan="1" rowspan="1"
class="confluenceTd"> constant </td><td colspan="1" rowspan="1"
class="confluenceTd"> default </td><td colspan="1" rowspan="1"
class="confluenceTd"> definition</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.validate.token </td><td colspan="1"
rowspan="1" class="confluenceTd"> true </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to validate the password of a received
UsernameToken or not.</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.enableRevocation </td><td colspan="1"
rowspan="1" class="confluenceTd"> false </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to enable Certificate Revocation List (CRL)
checking or not when verifying trust in a certificate.</td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd">
ws-security.username-token.always.encrypted </td><td colspan="1" rowspan="1"
class="confluenceTd"> true </t
d><td colspan="1" rowspan="1" class="confluenceTd"> Whether to always encrypt
UsernameTokens that are defined as a SupportingToken. This should not be set to
false in a production environment, as it exposes the password (or the digest of
the password) on the wire.</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.is-bsp-compliant </td><td colspan="1"
rowspan="1" class="confluenceTd"> true </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to ensure compliance with the Basic Security
Profile (BSP) 1.1 or not.</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.self-sign-saml-assertion </td><td colspan="1"
rowspan="1" class="confluenceTd"> false </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to self-sign a SAML Assertion or not. If this is
set to true, then an enveloped signature will be generated when the SAML
Assertion is constructed. </td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws
-security.enable.nonce.cache </td><td colspan="1" rowspan="1"
class="confluenceTd"> (varies) </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to cache UsernameToken nonces. See <a
shape="rect"
href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_NONCE_CACHE";>here</a>
for more information.</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> ws-security.enable.timestamp.cache </td><td colspan="1"
rowspan="1" class="confluenceTd"> (varies) </td><td colspan="1" rowspan="1"
class="confluenceTd"> Whether to cache Timestamp Created Strings. See <a
shape="rect"
href="http://cxf.apache.org/javadoc/latest/org/apache/cxf/ws/security/SecurityConstants.html#ENABLE_TIMESTAMP_CACHE";>here</a>
for more information.</td></tr></tbody></table>
</div>
