<service name="SecureService"> | |
<module ref="rampart"/> | |
<module ref="rahas"/> | |
<parameter locked="false" name="ServiceClass">org.apache.axis2.security.sc.Service</parameter> | |
<operation name="echo"> | |
<messageReceiver class="org.apache.axis2.receivers.RawXMLINOutMessageReceiver"/> | |
<actionMapping>urn:echo</actionMapping> | |
</operation> | |
<!-- <parameter name="sct-issuer-config"> | |
<sct-issuer-config> | |
<proofToken>EncryptedKey</proofToken> | |
<cryptoProperties>sctIssuer.properties</cryptoProperties> | |
<addRequestedAttachedRef /> | |
</sct-issuer-config> | |
</parameter>--> | |
<parameter name="sct-issuer-config"> | |
<sct-issuer-config> | |
<addRequestedAttachedRef/> | |
<addRequestedUnattachedRef/> | |
<cryptoProperties> | |
<crypto provider="org.apache.ws.security.components.crypto.Merlin"> | |
<property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</property> | |
<property name="org.apache.ws.security.crypto.merlin.file">sts.jks</property> | |
<property name="org.apache.ws.security.crypto.merlin.keystore.password">password</property> | |
</crypto> | |
</cryptoProperties> | |
<!-- | |
Key computation mechanism | |
1 - Use Request Entropy | |
2 - Provide Entropy | |
3 - Use Own Key | |
--> | |
<keyComputation>3</keyComputation> | |
<!-- | |
proofKeyType element is valid only if the keyComputation is set to 3 | |
i.e. Use Own Key | |
Valid values are: EncryptedKey & BinarySecret | |
--> | |
<proofKeyType>EncryptedKey</proofKeyType> | |
</sct-issuer-config> | |
</parameter> | |
<parameter name="token-canceler-config"> | |
<token-canceler-config> | |
<!--<proofToken>EncryptedKey</proofToken>--> | |
<!--<cryptoProperties>sctIssuer.properties</cryptoProperties>--> | |
<!--<addRequestedAttachedRef />--> | |
</token-canceler-config> | |
</parameter> | |
<parameter xmlns="" name="sc-configuration"> | |
<sc-configuration xmlns=""> | |
<scope xmlns="">service</scope> | |
<passwordCallbackClass xmlns="">org.apache.axis2.security.sc.PWCallback</passwordCallbackClass> | |
<cryptoProperties xmlns="">sctIssuer.properties</cryptoProperties> | |
</sc-configuration> | |
</parameter> | |
<parameter name="InflowSecurity"> | |
<action> | |
<items>Timestamp Signature</items> | |
<signaturePropFile>sctIssuer.properties</signaturePropFile> | |
</action> | |
</parameter> | |
<parameter name="OutflowSecurity"> | |
<action> | |
<items>Timestamp Signature Encrypt</items> | |
<encryptionUser>useReqSigCert</encryptionUser> | |
<user>sts</user> | |
<signaturePropFile xmlns="">sctIssuer.properties</signaturePropFile> | |
<passwordCallbackClass xmlns="">org.apache.axis2.security.sc.PWCallback</passwordCallbackClass> | |
</action> | |
</parameter> | |
</service> |