Rampart > Java
Timestamp validation fails! Why?
Submitted on July 30, 2007 - 00:40. Story : Level : Project :
This explains the common issues in wsse:Timestamp validation and the possible fixes.
How can I convert an LLOM AXIOM tree into a DOOM AXIOM tree?
Submitted on July 30, 2007 - 00:22. Story : Level : Project :
Apache AXIOM is a StAX based XML info-set model. LLOM (Linked List Object Model) is the default implementation of Apache AXIOM. In addition to this, Apache AXIOM provides another AXIOM implementation which also implements org.w3c.dom.* interfaces (which includes a subset of DOM Level 3 support) called DOOM.
Secure Messaging with Apache Rampart/Java - Ruchith Fernando
Submitted on February 8, 2007 - 02:18. Story : Project :
Ruchith takes a moment to talk about Apache Rampart and how it implements the security related Web service specifications for Apache Axis2. He also extends an invitation to all those buzzing minds out there to get on the Rampart bandwagon!
Secure Message Exchanges with Multiple Users
Submitted on September 5, 2006 - 21:20. Story : Project :
In many practical scenarios a service is expected to encrypt responses to its clients. In such scenarios the service will have to use the client's public key certificate to encrypt the response. It is possible with Apache Axis2 to implement such a scenario in four simple steps using Apache Rampart (the WS-Security module based on Apache WSS4J).
- 12 comments
- Read more
- 5585 reads
UsernameToken Authentication with Rampart
Submitted on August 15, 2006 - 07:08. Story : Project :
Apache Rampart is the Axis2 module that implements the WS-Security functionality based on Apache WSS4J. WS-Security provides multiple ways in which one can authenticate a user when they need to access a service. One easy mechanisms is to use a UsernameToken.
- 3 comments
- Read more
- 12124 reads
Secure Web Services with Apache Rampart
Submitted on August 4, 2006 - 19:20. Story : Project :
Setting Up Keystores for a Client and a Service
Submitted on June 29, 2006 - 00:55. Story : Project :
There has been many queries about setting up the keys and certificates properly for services and clients when securing Web services. By default Rampart/WSS4J supports using Java and PKCS12 keystores, to extract keys and certificates to be used by services and clients.This tutorial explains how to create key pairs for a client and a service, create keys for a certificate authority (CA), sign public key certificates of the client and the service using CA private key and import the certificates into the client at service keystores.
- 10 comments
- Read more
- 8165 reads
How can I obtain UsernameToken information at the service?
Submitted on June 13, 2006 - 03:00. Story : Project :
When Apache Rampart(Axis2 module that provides WS-Security and WS-SecureConversation support)/WSS4J is used to secure Web services in Axis2/Axis1.x we can extract the results of security processing at any state of the execution flow.

