jQuery in Action, 3rd edition
The moose likes Web Services and the fly likes Ws Policy for  Wss4j Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Java » Web Services
Bookmark "Ws Policy for  Wss4j" Watch "Ws Policy for  Wss4j" New topic

Ws Policy for Wss4j

padma harika pottamsetty

Joined: Jun 27, 2011
Posts: 7
I have a client and a server .Supposing that the client side has rampart and axis2 ,hence it signs the message using policy.xml.
But on the server side , I directly wrote some code where the SOAP message is taken and signed using the WsSecurityEngine().i.e it is using wss4j
Can the server side be attached with any policy.xml kind of thing ,where it gets to know what security mechanism its has to perform?

If yes . how?

Thank you
Kristofor Davison

Joined: Jul 05, 2011
Posts: 6
you can put rampart on the server side and in specify your own implementation of the security WSPasswordCallback class.
in axis2 the services.xml within the service itself on the server tells axis2 which password callback handler to use.
within this services.xml you can include the policy.xml for the server end. - there are samples in the rampart samples folder.

within your WSPasswordCallback class you can check many types of authentication security ect. but rampart will do a lot for you based on your policy.

hope this helps.
padma harika pottamsetty

Joined: Jun 27, 2011
Posts: 7
Well the issue here is in my case axis2 cannot sit on the server side.I know It could have been easier to have it , but as I dnt have axis2 I have to figure out a way to implement some security on the server side ,similar to rampart
I agree. Here's the link: http://aspose.com/file-tools
subject: Ws Policy for Wss4j
It's not a secret anymore!