Re: [jbossws-dev] WS-Trust ActAs testcase

Friday, 31 January 2014

Hi Rebecca,
I've had a preliminary look at the ActAs sample and it looks good to me. 
I didn't check the actual messages going over the wire, but afaics the 
scenario you implemented is one of those ActAs has been meant to (a 
client C calling service A which also needs to call service B, with A 
needing to act as C and get a token from the STS too). There's a similar 
scenario described for instance in [1].

Regarding the question on the security domain for the STS, there's no 
real requirement, it's just that when I originally created the first 
WS-Trust / STS example I thought it would have been reasonable in a real 
world to have the STS protected in some way. But that might just be no 
more then an assumption from me.

Cheers
Alessio

[1] 
http://weblogs.asp.net/cibrax/archive/2010/01/04/actas-in-ws-trust-1-4.aspx 
(see "Scenario 1: A Service A calling a Service B")

On 30/01/14 23:47, Rebecca Searls wrote:
...

 I've checked into jbossws ( https://svn.jboss.org/repos/jbossws/stack/cxf/trunk)
 a testcase for WS-Trust ActAs.  (see list of files at the bottom.)

 I have not found any on-line examples that enable me to confirm this implementation
 is correct.  It works but is it correct?  Any feed back you care to provide would
 be appreciated.  Documentation based upon this testcase and your feedback is forth
 coming. (I am working on another pass at code cleanup and refinement.)

 I do have the following question.

 Where does the requirement for a (JBossWS-trust-sts) security-realm for the STS come
from?
 I do not find any discussion of this in any of our JBossWS docs or the CXF docs.
 Is it tied to the wsdl in some way?
 (see files)

trunk/modules/testsuite/cxf-tests/src/test/resources/jaxws/samples/wsse/policy/trust/WEB-INF/jboss-web.xml

trunk/modules/testsuite/cxf-tests/src/test/resources/jaxws/samples/wsse/policy/trust/WEB-INF/jbossws-roles.properties

trunk/modules/testsuite/cxf-tests/src/test/resources/jaxws/samples/wsse/policy/trust/WEB-INF/jbossws-users.properties

 -- File list --

trunk/modules/testsuite/cxf-tests/src/test/java/org/jboss/test/ws/jaxws/samples/wsse/policy/trust/ActAsCallbackH
 andler.java

trunk/modules/testsuite/cxf-tests/src/test/java/org/jboss/test/ws/jaxws/samples/wsse/policy/trust/ActAsOutInterc
 eptor.java

trunk/modules/testsuite/cxf-tests/src/test/java/org/jboss/test/ws/jaxws/samples/wsse/policy/trust/ActAsServiceIm
 pl.java

trunk/modules/testsuite/cxf-tests/src/test/java/org/jboss/test/ws/jaxws/samples/wsse/policy/trust/ServiceImpl.ja
 va

trunk/modules/testsuite/cxf-tests/src/test/java/org/jboss/test/ws/jaxws/samples/wsse/policy/trust/WSTrustActAsTe
 stCase.java

trunk/modules/testsuite/cxf-tests/src/test/java/org/jboss/test/ws/jaxws/samples/wsse/policy/trust/WSTrustTestUti
 ls.java

trunk/modules/testsuite/cxf-tests/src/test/resources/jaxws/samples/wsse/policy/trust/WEB-INF/jbossws-roles.prope
 rties

trunk/modules/testsuite/cxf-tests/src/test/resources/jaxws/samples/wsse/policy/trust/WEB-INF/jbossws-users.prope
 rties
 trunk/modules/testsuite/cxf-tests/scripts/cxf-samples-jars-jaxws.xml

-- 
Alessio Soldano
Web Service Lead, JBoss

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006