WSSEProviderConf (WSO2 SOA Enablement Server for Java 6.6 API)

Overview

Package

Class

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

org.systinet.wasp.security.ws.conf
Interface WSSEProviderConf

All Superinterfaces:: WSSEConf

All Known Subinterfaces:: WSSEGlobalConf

public interface WSSEProviderConf
extends WSSEConf

Represents persistent configuration of WS-Security on the service endpoint and service client. It is composed of:

Outgoing messages configuration describes the security header of outgoing message (on the client side it is request message, on the service side it is response message). It consists of an array of SecuredMessage. If there is a SecuredMessage with empty operation name list, then it is assumed as default message configuration. If WSSEConf's MessageConf has set MessageConf.setNoSecurityHeader(java.lang.Boolean) to true then the message is not secured by WS-Security.
Incoming validator is a class name that implements IncomingValidator interface. If set then IncomingValidator.validate is called to check validity of used security in incoming message.
WS-Security parameters are inhertied from WSSEConf.

Persistent configuration is represeted by an element of name securityProviderPreferences with attribute localName of value WS-Security and namespace http://systinet.com/wasp/package/wssecurity/1.0. The content of the element must follows the schema desribed in WSSEGlobalConf.

Service Endpoint
Example:

  ...
 <service-endpoint name="WSService"
                    path="/WSService"
                    processing="tns:WSDDTest_processing"
                    service-instance="tns:WSDDTest_inst"
                    service-type="java"
                    xml-protocol="soap11">
      <wsdl service="ns0:JavaService"
            uri="WSDDTest.wsdl"/>

      <securityProviderPreferences localName="WS-Security" xmlns="http://systinet.com/wasp/package/wssecurity/1.0">
          <externalSecurityTokens>
              <securityToken wsuId="SecurityToken-1"
                             type="X509v3"
                             order="100"/>
          </externalSecurityTokens>

          <securedMessage>
              <methodName>hello</methodName>

              <messageConf>
                  <securityToken type="X509v3">
                      <wsuId>SecurityToken-1</wsuId>
                      <order>100</order>
                  </securityToken>

                  <encryptedKey>
                      <wsuId>EncryptedKey-1</wsuId>
                      <encryptionMethodAlgorithm>http://www.w3.org/2001/04/xmlenc#rsa-1_5</encryptionMethodAlgorithm>
                      <keyInfo securityTokenId="SecurityToken-1"
                               securityTokenMode="keyidentifier"/>
                      <reference URI="#EncryptedData-1"/>
                      <order>50</order>
                  </encryptedKey>

                  <encryptedData>
                      <wsuId>EncryptedData-1</wsuId>
                      <encryptionMethodAlgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</encryptionMethodAlgorithm>
                      <encryptElementContent>true</encryptElementContent>
                      <encryptBody>true</encryptBody>
                      <order>0</order>
                  </encryptedData>
              </messageConf>
          </securedMessage>
      </securityProviderPreferences>
 ...
 </service-endpoint>

Service Client
Example:

  ...
  <service-client port-type="ns0:WSService">
      <securityProviderPreferences localName="WS-Security" xmlns="http://systinet.com/wasp/package/wssecurity/1.0">
          <externalSecurityTokens>
              <securityToken wsuId="SecurityToken-1" type="X509v3" order="100"/>
          </externalSecurityTokens>

          <securedMessage>
              <methodName>hello(Ljava.lang.String;)Ljava.lang.String;</methodName>

              <messageConf>
                  <securityToken wsuId="usernametoken-1" order="10" type="Username">
                      <property propertyName="PasswordType" propertyValue="PasswordText"/>
                  </securityToken>
                  <encryptedData>
                      <wsuId>EncryptedData-usernametoken1</wsuId>
                      <encryptionMethodAlgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</encryptionMethodAlgorithm>
                      <encryptElementContent>false</encryptElementContent>
                      <encryptionTargetId>usernametoken-1</encryptionTargetId>
                      <order>15</order>
                  </encryptedData>

                  <encryptedKey>
                      <wsuId>EncryptedKey-1</wsuId>
                      <encryptionMethodAlgorithm>http://www.w3.org/2001/04/xmlenc#rsa-1_5</encryptionMethodAlgorithm>
                      <keyInfo securityTokenId="SecurityToken-1"
                               securityTokenMode="keyidentifier"/>
                      <reference URI="#EncryptedData-1"/>
                      <reference URI="#EncryptedData-usernametoken1"/>
                      <order>50</order>
                  </encryptedKey>

                  <encryptedData>
                      <wsuId>EncryptedData-1</wsuId>
                      <encryptionMethodAlgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</encryptionMethodAlgorithm>
                      <encryptElementContent>true</encryptElementContent>
                      <encryptBody>true</encryptBody>
                      <order>0</order>
                  </encryptedData>
              </messageConf>
          </securedMessage>
      </securityProviderPreferences>
  </service-client>
 ...

Since:: 4.6
Component:: Security-Providers

Method Summary
`SecuredMessage[]`	`getSecuredMessages()` Returns configration of outgoing messages.
`SecuredMessage`	`newSecuredMessage()` Creates new instance of `SecuredMessage` for use in `setSecuredMessages(org.systinet.wasp.security.ws.conf.SecuredMessage[])`
`void`	`setSecuredMessages(SecuredMessage[] messagesConf)` Sets configuration of outgoing messages.

Methods inherited from interface org.systinet.wasp.security.ws.conf.WSSEConf

getClockSkew, getDisableCertCheck, getExternalSecurityTokens, getFaultStackTrace, getIgnoreTimestampHeaderExpiration, getNoUsernameTokenValidation, getTimestampHeaderExpiration, getTimestampHeaderMaxAge, getTokenExpiration, getValidatorClassName, newExternalSecurityTokens, setClockSkew, setDisableCertCheck, setExternalSecurityTokens, setFaultStackTrace, setIgnoreTimestampHeaderExpiration, setNoUsernameTokenValidation, setTimestampHeaderExpiration, setTimestampHeaderMaxAge, setTokenExpiration, setValidatorClassName

Method Detail

getSecuredMessages

public SecuredMessage[] getSecuredMessages()

Returns configration of outgoing messages.

Returns:: configuration of outgoing messages.

setSecuredMessages

public void setSecuredMessages(SecuredMessage[] messagesConf)

Sets configuration of outgoing messages.

Parameters:: messagesConf - configuration of outgouing messages.

newSecuredMessage

public SecuredMessage newSecuredMessage()

Creates new instance of SecuredMessage for use in setSecuredMessages(org.systinet.wasp.security.ws.conf.SecuredMessage[])

Returns:: instance of SecuredMessage