| <wsp:Policy wsu:Id="SignEncryptXPath" |
| xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" |
| xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"> |
| <wsp:ExactlyOne> |
| <wsp:All> |
| |
| <sp:AsymmetricBinding |
| xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> |
| <wsp:Policy> |
| <sp:InitiatorToken> |
| <wsp:Policy> |
| <sp:X509Token |
| sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never"> |
| <wsp:Policy> |
| <sp:WssX509V3Token10/> |
| </wsp:Policy> |
| </sp:X509Token> |
| |
| </wsp:Policy> |
| </sp:InitiatorToken> |
| <sp:RecipientToken> |
| <wsp:Policy> |
| <sp:X509Token |
| sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never"> |
| <wsp:Policy> |
| <sp:WssX509V3Token10/> |
| </wsp:Policy> |
| </sp:X509Token> |
| |
| </wsp:Policy> |
| </sp:RecipientToken> |
| <sp:AlgorithmSuite> |
| <wsp:Policy> |
| <sp:TripleDesRsa15/> |
| </wsp:Policy> |
| </sp:AlgorithmSuite> |
| <sp:Layout> |
| <wsp:Policy> |
| |
| <sp:Strict/> |
| </wsp:Policy> |
| </sp:Layout> |
| <sp:IncludeTimestamp/> |
| <sp:OnlySignEntireHeadersAndBody/> |
| </wsp:Policy> |
| </sp:AsymmetricBinding> |
| <sp:Wss10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> |
| <wsp:Policy> |
| |
| <sp:MustSupportRefKeyIdentifier/> |
| <sp:MustSupportRefIssuerSerial/> |
| </wsp:Policy> |
| </sp:Wss10> |
| |
| <sp:EncryptedElements xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" |
| xmlns:ser="http://example1.org/example1" |
| xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> |
| <sp:XPath>/soapenv:Envelope/soapenv:Body/ser:example1</sp:XPath> |
| </sp:EncryptedElements> |
| <sp:SignedElements xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" |
| xmlns:test="http://example1.org/example1" |
| xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> |
| <sp:XPath>/soapenv:Envelope/soapenv:Body/test:example1</sp:XPath> |
| </sp:SignedElements> |
| |
| <ramp:RampartConfig xmlns:ramp="http://ws.apache.org/rampart/policy"> |
| <ramp:user>alice</ramp:user> |
| <ramp:encryptionUser>bob</ramp:encryptionUser> |
| <ramp:passwordCallbackClass>org.apache.rampart.PWCallback |
| </ramp:passwordCallbackClass> |
| |
| <ramp:signatureCrypto> |
| <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin"> |
| <ramp:property |
| name="org.apache.ws.security.crypto.merlin.keystore.type">JKS |
| </ramp:property> |
| <ramp:property name="org.apache.ws.security.crypto.merlin.file"> |
| rampart/store.jks |
| </ramp:property> |
| <ramp:property |
| name="org.apache.ws.security.crypto.merlin.keystore.password"> |
| password |
| </ramp:property> |
| </ramp:crypto> |
| </ramp:signatureCrypto> |
| <ramp:encryptionCypto> |
| <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin"> |
| <ramp:property |
| name="org.apache.ws.security.crypto.merlin.keystore.type">JKS |
| </ramp:property> |
| <ramp:property name="org.apache.ws.security.crypto.merlin.file"> |
| rampart/store.jks |
| </ramp:property> |
| <ramp:property |
| name="org.apache.ws.security.crypto.merlin.keystore.password"> |
| password |
| </ramp:property> |
| </ramp:crypto> |
| </ramp:encryptionCypto> |
| </ramp:RampartConfig> |
| </wsp:All> |
| </wsp:ExactlyOne> |
| </wsp:Policy> |