Hi Simon, > I ran up some samples today. I started > samples/helloworld-ws-service-secure and called it with > samples/helloworld-ws-reference and > samples/helloworld-ws-reference-secure. A attached the output below > [1] > > I then tried what I think you tried and changed the configuration of > the client to disable the keystore for helloworld-ws-reference-secure.
helloworld requires authentication and integrity, where I am only trying to implement confidentiality (current requirement, others may follow later). Am I going about this wrong? With straight sockets (what I am replacing with Tuscany), I just need to change the sockets to SSL, and provide the keyStore/trustStore and password into it to get at the cert. This is why I was mimicking the secure-store sample, where its definitions.xml policySet just defines the same info. Nothing about password callback, or even rampart, yet it is the one that provides the sca:confidentiality (albeit for binding.http). > When you say "My web service still works without any errors." do you > mean that the client and server are still able to start and > communicate? Yes. It throws the one "- Module validation failed...", then successfully continues on. Thanks, Bob
