<saml-issuer-config> | |
<issuerName>Test_STS</issuerName> | |
<!-- alias of the issuer's private key --> | |
<issuerKeyAlias>ip</issuerKeyAlias> | |
<!-- password of the issuer's private key --> | |
<issuerKeyPassword>password</issuerKeyPassword> | |
<cryptoProperties> | |
<crypto provider="org.apache.ws.security.components.crypto.Merlin"> | |
<property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</property> | |
<property name="org.apache.ws.security.crypto.merlin.file">META-INF/rahas-sts.jks</property> | |
<property name="org.apache.ws.security.crypto.merlin.keystore.password">password</property> | |
</crypto> | |
</cryptoProperties> | |
<timeToLive>300000</timeToLive> | |
<keySize>256</keySize> | |
<addRequestedAttachedRef /> | |
<addRequestedUnattachedRef /> | |
<!-- | |
Key computation mechanism | |
1 - Use Request Entropy | |
2 - Provide Entropy | |
3 - Use Own Key | |
--> | |
<keyComputation>2</keyComputation> | |
<!-- | |
proofKeyType element is valid only if the keyComputation is set to 3 | |
i.e. Use Own Key | |
Valid values are: EncryptedKey & BinarySecret | |
--> | |
<proofKeyType>BinarySecret</proofKeyType> | |
<trusted-services> | |
<!-- The service name and the alias of the trusted cert to use --> | |
<service alias="bob">http://localhost:8080/axis2/services/STS</service> | |
</trusted-services> | |
</saml-issuer-config> |