[jboss-user] [JBoss Web Services] - JBossWS Service that calls a client
Daniel Hoult
do-not-reply at jboss.com
Tue Jul 27 17:03:58 EDT 2010
Daniel Hoult [http://community.jboss.org/people/dannyhoult] replied to the discussion
"JBossWS Service that calls a client"
To view the discussion, visit: http://community.jboss.org/message/554695#554695
--------------------------------------------------------------
an additional note:
We can temporarily solve this issue by specifying the encryption alias in the jboss-wsse-server.xml, but doing this means other clients (using other aliases) can't interact with the service...
<config>
<timestamp ttl="300" />
<sign type="x509v3" alias="server" includeTimestamp="true" />
<!-- doesn't work -->
<encrypt type="x509v3" algorithm="aes-128" keyWrapAlgorithm="rsa_oaep"
tokenReference="keyIdentifier" />
<!-- does work but disables other clients -->
<encrypt type="x509v3" algorithm="aes-128" keyWrapAlgorithm="rsa_oaep"
tokenReference="keyIdentifier" alias="specific_client_to_encrypt_to" />
<requires>
<signature />
<encryption />
</requires>
<authenticate>
<signatureCertAuth certificatePrincipal="org.jboss.security.auth.certs.SubjectCNMapping" />
</authenticate>
</config>
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/554695#554695]
Start a new discussion in JBoss Web Services at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2044]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20100727/6e8791ed/attachment-0001.html
More information about the jboss-user
mailing list