Hi Tim, Please see my comments below:
One more related question please: if I implement a password callback and I get a WSPasswordCallback instance, when would its usage be KEY_NAME ?
Please see the interop scenario4 where it uses. <parameter name="EmbeddedKeyName" value="SessionKey" /> This is the name of a key that is known to the both parties by that particular name. This callback handler impl [1] uses this scenario to encrypt the message with the key.
I assume this is for cases where I do not provide a crypto.properties file hence WSS4J tries to get the key via a callback? Is this how this works if I want to manage the keystore myself?
I don't think this will help in your case ... Seems like you will have to implement a new org.apache.ws.security.components.crypto.Crypto impl as I mentioned in my first response. The KEY_NAME scenario will require both service and client to know the key by the _name_ of the key. And this name is sent in the SOAP message. Example messages are available here : [2] (See the soapenv:Envelope/soapenv:Body/xenc:EncryptedData/ds:KeyInfo/ds:KeyName) Thanks, Ruchith [1] http://svn.apache.org/repos/asf/webservices/wss4j/trunk/interop/org/apache/ws/axis/oasis/PWCallback.java [2] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
