Dear Wiki user, You have subscribed to a wiki page or wiki category on "Ws Wiki" for change notification.
The following page has been changed by WernerDittmann: http://wiki.apache.org/ws/FrontPage/WsFx/wss4jFAQ ------------------------------------------------------------------------------ 1. [#isWSS4J What is WSS4J?] 1. [#isWSS4Jnot What is WSS4J not?] + 1. [#common Encryption, decryption, signature, certificates, ...] 1. [#sigverify Problems and errors with Signature verification] 1. [#noalgo No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5 or similar] 1. [#npe Spurious Null Pointer Exception] @@ -21, +22 @@ ==== What is WSS4J? ==== WSS4J is part of the Apache Web Services project. Here is [http://ws.apache.org/ link] to all Apache Web Service projects. - Apache WSS4J is an implementation of the OASIS Web Services Security specifications (WS-Security, WSS) + Apache WSS4J is an implementation of the OASIS Web Services Security specifications - from OASIS Web Services Security TC. WSS4J is primarily a Java library that can be used to sign, verify, encrypt, - and decrypt SOAP Messages according to the WS-Security specifications. This library is independent of + (WS-Security, WSS) from OASIS Web Services Security TC. WSS4J is primarily a Java + library that can be used to sign, verify, encrypt, and decrypt SOAP Messages according + to the WS-Security specifications. This library is independent of underlying SOAP - underlying SOAP engines. The link between WSS4J and SOAP engines is provided by handlers. + engines. The link between WSS4J and SOAP engines is provided by handlers. - On top of this library we also implemented handlers for the Axis SOAP engine and for SOAP engines that use + On top of this library we also implemented handlers for the Axis SOAP engine and for - JAX-RPC specifications. + OAP engines that use JAX-RPC specifications. - Here is the [http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss link] to the OASIS WS-Security + Here is the [http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss link] to - specifications. + the OASIS WS-Security specifications. [[Anchor(isWSS4Jnot)]] ==== What is WSS4J not? ==== WSS4J is '''not''' a tool to * manage certificates or create certificates * encrypt, decrypt, sign, and verify arbitray XML documents + + [[Anchor(common)]] + ==== Encryption, decryption, signature, certificates, ... ==== + This is what WSS4J is all about. To use WSS4J you shall have at least a basic + understanding of all this. For a very first start have a look into + [http://httpd.apache.org/docs/2.0/ssl/ssl_intro.html this text]. At the reference + section you'll find more pointers to the relevant standards and other information. [[Anchor(sigverify)]] ==== Problems and errors with Signature verification ====
