User Close

Search

THE DEVELOPER PORTAL FOR SOA

WS-Security implementation

krishysr's picture

Submitted by krishysr on July 16, 2008 - 14:55

Hi I was able to expose web services using WSF/Spring. Can some help me on how to configure WS-Security to implement authentication and authorization. Thanks krish

sanjayak's picture

This requires policy support

Submitted by sanjayak on July 22, 2008 - 08:28.

This requires policy support which is still WIP. Soon we will add this to the trunk with the sample code updated.

Login or register to post comments

sanka's picture

Hi Kris, You can enable

Submitted by sanka on July 24, 2008 - 22:22.

Hi Kris, You can enable WS-Security for a Spring Web service if you build the WSF-spring binaries from the latest codebase. Follow the steps given below. 1) Build the wsf-spring binaries from the latest codebase. 2) Add rampart mar / jar files to the lib folder of the servlet container. 3) Specify the security policy for the service in applicationContext.xml <bean id="sampleservice" class="org.wso2.spring.ws.SpringWebService"> .... <property name="policies"> <list> <value>  <wsp:Policy wsu:Id="SgnEncrAnonymous" xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsp:ExactlyOne> <wsp:All> .... </value> </list> </property> .... </bean> 4) Engage rampart module by adding the following entry in applicationContext.xml <bean id="sampleservice" .. > .... <property name="modules"> <list> <value>addressing</value> </list> </property> .... </bean> HTH Sanka

Login or register to post comments

skarootz's picture

about policy.xml

Submitted by skarootz on October 15, 2009 - 08:25.

Hi, I want to be able to include the passwordCallBack handler using spring di instead of the policy.xml file, is that posible, I need this because my passwordCallbackHandler uses another dependencies that are managed by Spring. Here is an example, the " does it really work" is an attempt to do it. <bean id="services" class="org.wso2.spring.ws.WebServices"> <property name="services"> <list> <bean id="emrService" class="org.wso2.spring.ws.SpringWebService"> <property name="serviceBean" ref="emrws"></property> <property name="serviceName" value="emrWs"></property> <property name="serviceDescription" value="Provee de metodos para realizar busquedas."></property> <property name="modules"> <list> <value>rampart</value> </list> </property> <property name="policyFiles"> <list> <value>policy.xml</value> </list> </property>  <property name="parameters"> <map> <entry key="InflowSecurity" value-ref="inflowConfiguration" />  </map> </property>  </bean> </list> </property> </bean>

Login or register to post comments

library project main code

Featured

In your cloud environment, if a user is consuming too much of your resources, either you have to control the user's behavior or scale up your resources to cater the situation and charge the user for consuming resources. If you decide to control the user, then, throttling is the answer for you...

WSO2 StratosLive is the public Platform as a Service (PaaS) from WSO2. With its lean, complete and 100% open source model, StratosLive holds key attributes to become competitively prominent in the enterprise cloud space...

Messaging is used with distributed computing to achieve asynchronous communication. An Event is a change of state in a software system. Eventing is referred to as propagating messages which contain those event information through publish and subscribe...

Patterns are essential ingredients for architects when building solutions since patterns make solutions more stable as well as clean. It is important to pick the correct pattern based on the problem or the use-case that is implemented by a solution...

WSO2 Carbon Studio immensely simplifies SOA development by providing a complete Eclipse IDE for service/application development, deployment and execution. This article explains Carbon Studio and its benefits...

Popular Content

Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 1 (456093 reads)
How to Embed an Axis2 based Web Service in your Webapp? (104736 reads)
Hello World with Apache Axis2 (102579 reads)
Web Services Security with Apache Rampart – Part 1 ( Transport Level Security ) (96156 reads)
Downloading a Binary File from a Web Service using Axis2 and SOAP with Attachments (91216 reads)
Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 2 (84680 reads)
Writing Your Own services.xml for Axis2 Web Services (80086 reads)
Reference Guide to Apache Axis2 Client API Parameters (72628 reads)

Learn Cloud

Learn

Cloud

The WSO2 Application Server is a reliable application server that can host your enterprise web applications. The WSO2 Application Server as a Service is offered in StratosLive, the WSO2 Platform as a Service. This article explains how a simple web application can be developed and deployed from Carbon Studio to the WSO2 Application Server...

Latest Webinar

Different groups within an organization need to monitor different Key Performance Indicators (KPIs) - An operations team will be interested in the response times of business services and loads of each service,..

Thursday, February 9th 2012, 09.00 AM (PST)

Thursday, February 9th 2012, 10.00 AM (GMT)

Tags

WS-PolicyAttachment Web services WS-Policy WS-ReliableMessaging WS-* WS-Eventing WS-Policy transports WS-Trust WS-Security