Java

Hello all. I´ve followed all examples and tutorials about axis2 and rampart using wss, posted in wso2 (which are excellent), and they work fine in axis2 1.4.1 and rampart 1.4 on eclipse ganymede 3.4.1 and jdk 1.5.0_22 and tomcat-6.0.20. However, i've to implement a web service from a specific wsdl, using a keystore.jks and cacerts.jks that someone give to me, and here begin the problems as a "Error in signature with X509Token", and more. Could you help me if send you the wsdl ? Thanks. Emilio Here the wsdl: " <?xml version="1.0" encoding="UTF-8"?>

Introduction to Rampart/Java

This explains how to setup and run standard Apache Rampart samples in an Axis2 instance hosted in Apache Rampart.

In this tutorial, Nandana Mihindukulasooriya walks you through vulnerabilities within Axis2 1.4/ Rampart 1.4 and lists possible work arounds in solving those issues.

Apache Rampart is the Axis2 module that provides WS-Security functionality to Axis2 Web services and their clients. Apache Rampart configuration allows providing a password callback handler class, that can be used to provide passwords needed for Rampart engine to build username tokens and create signatures when sending messages. It is also used to provide passwords required to validate incoming username tokens and decrypt encrypted content in incoming messages. In this tutorial, Nandana Mihindukulasooriya will go through possible usage scenarios of password callback handler and describe how to configure Rampart and write password callback handlers to suit each of those usage scenarios.

This explains the common issues in wsse:Timestamp validation and the possible fixes.

Apache AXIOM is a StAX based XML info-set model. LLOM (Linked List Object Model) is the default implementation of Apache AXIOM. In addition to this, Apache AXIOM provides another AXIOM implementation which also implements org.w3c.dom.* interfaces (which includes a subset of DOM Level 3 support) called DOOM.

Ruchith takes a moment to talk about Apache Rampart and how it implements the security related Web service specifications for Apache Axis2. He also extends an invitation to all those buzzing minds out there to get on the Rampart bandwagon!