modules/interop/src/resources/conf/sec-services.xml - axis-axis2-java-sandesha - Git at Google

 <!--
  Licensed to the Apache Software Foundation (ASF) under one
  or more contributor license agreements. See the NOTICE file
  distributed with this work for additional information
  regarding copyright ownership. The ASF licenses this file
  to you under the Apache License, Version 2.0 (the
  "License"); you may not use this file except in compliance
  with the License. You may obtain a copy of the License at

  http://www.apache.org/licenses/LICENSE-2.0

  Unless required by applicable law or agreed to in writing,
  software distributed under the License is distributed on an
  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  KIND, either express or implied. See the License for the
  specific language governing permissions and limitations
  under the License.
 -->
 <!-- This file was auto-generated from WSDL -->
 <!-- by the Apache Axis2 version: #axisVersion# #today# -->
 <service name="SecRMInteropService">

 	<module ref="sandesha2" />
 	<module ref="rampart"/>
 	<module ref="rahas"/>

 	<messageReceivers>
 		<messageReceiver mep="http://www.w3.org/ns/wsdl/in-out"
 			class="org.apache.axis2.receivers.RawXMLINOutMessageReceiver" />
 		<messageReceiver
 			mep="http://www.w3.org/ns/wsdl/in-only"
 			class="org.apache.axis2.receivers.RawXMLINOnlyMessageReceiver" />
 	</messageReceivers>

 	<parameter locked="false" name="ServiceClass">
 		org.apache.sandesha2.interop.securerm.SecRMServiceImpl
 	</parameter>

 	<operation name="EchoString"
 		mep="http://www.w3.org/ns/wsdl/in-out">
 		<actionMapping>urn:wsrm:EchoString</actionMapping>
 		<outputActionMapping>
 			urn:wsrm:EchoStringResponse
 		</outputActionMapping>
 	</operation>

 	<operation name="Ping"
 		mep="http://www.w3.org/ns/wsdl/in-only">
 		<actionMapping>urn:wsrm:Ping</actionMapping>
 	</operation>

 	<!-- Rampart and Rahas configurations -->
 	<wsp:Policy wsu:Id="SecConvPolicy2" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
 	<wsp:ExactlyOne>
 		<wsp:All>
 			<sp:SymmetricBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
 				<wsp:Policy>
 					<sp:ProtectionToken>
 						<wsp:Policy>
 							<sp:SecureConversationToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
 								<wsp:Policy>
 									<sp:RequireDerivedKeys/>
 									<sp:BootstrapPolicy>
 										<wsp:Policy>
 											<sp:EncryptedParts>
 												<sp:Body/>
 											</sp:EncryptedParts>
 											<sp:SymmetricBinding>
 												<wsp:Policy>
 													<sp:ProtectionToken>
 														<wsp:Policy>
 															<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
 																<wsp:Policy>
 																	<sp:RequireDerivedKeys/>
 																	<sp:RequireThumbprintReference/>
 																	<sp:WssX509V3Token10/>
 																</wsp:Policy>
 															</sp:X509Token>
 														</wsp:Policy>
 													</sp:ProtectionToken>
 													<sp:AlgorithmSuite>
 														<wsp:Policy>
 															<sp:Basic128Rsa15/>
 														</wsp:Policy>
 													</sp:AlgorithmSuite>
 													<sp:Layout>
 														<wsp:Policy>
 															<sp:Strict/>
 														</wsp:Policy>
 													</sp:Layout>
 													<sp:IncludeTimestamp/>
 													<sp:EncryptSignature/>
 													<sp:OnlySignEntireHeadersAndBody/>
 												</wsp:Policy>
 											</sp:SymmetricBinding>
 											<sp:EndorsingSupportingTokens>
 												<wsp:Policy>
 													<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
 														<wsp:Policy>
 															<sp:RequireThumbprintReference/>
 															<sp:WssX509V3Token10/>
 														</wsp:Policy>
 													</sp:X509Token>
 												</wsp:Policy>
 											</sp:EndorsingSupportingTokens>
 											<sp:Wss11>
 												<wsp:Policy>
 													<sp:MustSupportRefKeyIdentifier/>
 													<sp:MustSupportRefIssuerSerial/>
 													<sp:MustSupportRefThumbprint/>
 													<sp:MustSupportRefEncryptedKey/>
 													<sp:RequireSignatureConfirmation/>
 												</wsp:Policy>
 											</sp:Wss11>
 											<sp:Trust10>
 												<wsp:Policy>
 													<sp:MustSupportIssuedTokens/>
 													<sp:RequireClientEntropy/>
 													<sp:RequireServerEntropy/>
 												</wsp:Policy>
 											</sp:Trust10>
 										</wsp:Policy>
 									</sp:BootstrapPolicy>
 								</wsp:Policy>
 							</sp:SecureConversationToken>
 						</wsp:Policy>
 					</sp:ProtectionToken>
 					<sp:AlgorithmSuite>
 						<wsp:Policy>
 							<sp:Basic128Rsa15/>
 						</wsp:Policy>
 					</sp:AlgorithmSuite>
 					<sp:Layout>
 						<wsp:Policy>
 							<sp:Strict/>
 						</wsp:Policy>
 					</sp:Layout>
 					<sp:IncludeTimestamp/>
 					<sp:EncryptSignature/>
 					<sp:OnlySignEntireHeadersAndBody/>
 				</wsp:Policy>
 			</sp:SymmetricBinding>
 			<sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
 				<wsp:Policy>
 					<sp:MustSupportRefKeyIdentifier/>
 					<sp:MustSupportRefIssuerSerial/>
 					<sp:MustSupportRefThumbprint/>
 					<sp:MustSupportRefEncryptedKey/>
 				</wsp:Policy>
 			</sp:Wss11>
 			<sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
 				<wsp:Policy>
 					<sp:MustSupportIssuedTokens/>
 					<sp:RequireClientEntropy/>
 					<sp:RequireServerEntropy/>
 				</wsp:Policy>
 			</sp:Trust10>
 			<sp:EncryptedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
 				<sp:Body/>
 			</sp:EncryptedParts>
 			<ramp:RampartConfig xmlns:ramp="http://ws.apache.org/rampart/policy">
 				<ramp:user>bob</ramp:user>
 				<ramp:encryptionUser>alice</ramp:encryptionUser>
 				<ramp:passwordCallbackClass>org.apache.sandesha2.interop.PWCallback</ramp:passwordCallbackClass>

 				<ramp:signatureCrypto>
 					<ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
 						<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
 						<ramp:property name="org.apache.ws.security.crypto.merlin.file">store.jks</ramp:property>
 						<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
 					</ramp:crypto>
 				</ramp:signatureCrypto>
 				<ramp:encryptionCypto>
 					<ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
 						<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
 						<ramp:property name="org.apache.ws.security.crypto.merlin.file">store.jks</ramp:property>
 						<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
 					</ramp:crypto>
 				</ramp:encryptionCypto>

 				<ramp:tokenIssuerPolicy xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
 					<wsp:Policy>
 						<sp:EncryptedParts>
 							<sp:Body/>
 						</sp:EncryptedParts>
 						<sp:SymmetricBinding>
 							<wsp:Policy>
 								<sp:ProtectionToken>
 									<wsp:Policy>
 										<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
 											<wsp:Policy>
 												<sp:RequireDerivedKeys/>
 												<sp:RequireThumbprintReference/>
 												<sp:WssX509V3Token10/>
 											</wsp:Policy>
 										</sp:X509Token>
 									</wsp:Policy>
 								</sp:ProtectionToken>
 								<sp:AlgorithmSuite>
 									<wsp:Policy>
 										<sp:Basic128Rsa15/>
 									</wsp:Policy>
 								</sp:AlgorithmSuite>
 								<sp:Layout>
 									<wsp:Policy>
 										<sp:Strict/>
 									</wsp:Policy>
 								</sp:Layout>
 								<sp:IncludeTimestamp/>
 								<sp:EncryptSignature/>
 								<sp:OnlySignEntireHeadersAndBody/>
 							</wsp:Policy>
 						</sp:SymmetricBinding>
 						<sp:EndorsingSupportingTokens>
 							<wsp:Policy>
 								<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
 									<wsp:Policy>
 										<sp:RequireThumbprintReference/>
 										<sp:WssX509V3Token10/>
 									</wsp:Policy>
 								</sp:X509Token>
 							</wsp:Policy>
 						</sp:EndorsingSupportingTokens>
 						<sp:Wss11>
 							<wsp:Policy>
 								<sp:MustSupportRefKeyIdentifier/>
 								<sp:MustSupportRefIssuerSerial/>
 								<sp:MustSupportRefThumbprint/>
 								<sp:MustSupportRefEncryptedKey/>
 								<sp:RequireSignatureConfirmation/>
 							</wsp:Policy>
 						</sp:Wss11>
 						<sp:Trust10>
 							<wsp:Policy>
 								<sp:MustSupportIssuedTokens/>
 								<sp:RequireClientEntropy/>
 								<sp:RequireServerEntropy/>
 							</wsp:Policy>
 						</sp:Trust10>
 					</wsp:Policy>
 				</ramp:tokenIssuerPolicy>

 			</ramp:RampartConfig>
 		</wsp:All>
 	</wsp:ExactlyOne>
 	</wsp:Policy>


     <parameter name="sct-issuer-config">
 		<sct-issuer-config>
 			<cryptoProperties>
                <crypto provider="org.apache.ws.security.components.crypto.Merlin">
                     <property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</property>
                     <property name="org.apache.ws.security.crypto.merlin.file">store.jks</property>
                     <property name="org.apache.ws.security.crypto.merlin.keystore.password">password</property>
                 </crypto>
 			</cryptoProperties>
 			<addRequestedAttachedRef />
 			<addRequestedUnattachedRef />

             <!--
                Key computation mechanism
                1 - Use Request Entropy
                2 - Provide Entropy
                3 - Use Own Key
             -->
             <keyComputation>2</keyComputation>

             <!--
                proofKeyType element is valid only if the keyComputation is set to 3
                i.e. Use Own Key

                Valid values are: EncryptedKey & BinarySecret
             -->
             <proofKeyType>BinarySecret</proofKeyType>
         </sct-issuer-config>
     </parameter>

 	<parameter name="token-canceler-config">
 		<token-canceler-config>
 			<!--<proofToken>EncryptedKey</proofToken>-->
 			<!--<cryptoProperties>sctIssuer.properties</cryptoProperties>-->
 			<!--<addRequestedAttachedRef />-->
 		</token-canceler-config>
     </parameter>


 </service>
	<!--
	Licensed to the Apache Software Foundation (ASF) under one
	or more contributor license agreements. See the NOTICE file
	distributed with this work for additional information
	regarding copyright ownership. The ASF licenses this file
	to you under the Apache License, Version 2.0 (the
	"License"); you may not use this file except in compliance
	with the License. You may obtain a copy of the License at

	http://www.apache.org/licenses/LICENSE-2.0

	Unless required by applicable law or agreed to in writing,
	software distributed under the License is distributed on an
	"AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	KIND, either express or implied. See the License for the
	specific language governing permissions and limitations
	under the License.
	-->
	<!-- This file was auto-generated from WSDL -->
	<!-- by the Apache Axis2 version: #axisVersion# #today# -->
	<service name="SecRMInteropService">

	<module ref="sandesha2" />
	<module ref="rampart"/>
	<module ref="rahas"/>

	<messageReceivers>
	<messageReceiver mep="http://www.w3.org/ns/wsdl/in-out"
	class="org.apache.axis2.receivers.RawXMLINOutMessageReceiver" />
	<messageReceiver
	mep="http://www.w3.org/ns/wsdl/in-only"
	class="org.apache.axis2.receivers.RawXMLINOnlyMessageReceiver" />
	</messageReceivers>

	<parameter locked="false" name="ServiceClass">
	org.apache.sandesha2.interop.securerm.SecRMServiceImpl
	</parameter>

	<operation name="EchoString"
	mep="http://www.w3.org/ns/wsdl/in-out">
	<actionMapping>urn:wsrm:EchoString</actionMapping>
	<outputActionMapping>
	urn:wsrm:EchoStringResponse
	</outputActionMapping>
	</operation>

	<operation name="Ping"
	mep="http://www.w3.org/ns/wsdl/in-only">
	<actionMapping>urn:wsrm:Ping</actionMapping>
	</operation>

	<!-- Rampart and Rahas configurations -->
	<wsp:Policy wsu:Id="SecConvPolicy2" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
	<wsp:ExactlyOne>
	<wsp:All>
	<sp:SymmetricBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
	<wsp:Policy>
	<sp:ProtectionToken>
	<wsp:Policy>
	<sp:SecureConversationToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
	<wsp:Policy>
	<sp:RequireDerivedKeys/>
	<sp:BootstrapPolicy>
	<wsp:Policy>
	<sp:EncryptedParts>
	<sp:Body/>
	</sp:EncryptedParts>
	<sp:SymmetricBinding>
	<wsp:Policy>
	<sp:ProtectionToken>
	<wsp:Policy>
	<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
	<wsp:Policy>
	<sp:RequireDerivedKeys/>
	<sp:RequireThumbprintReference/>
	<sp:WssX509V3Token10/>
	</wsp:Policy>
	</sp:X509Token>
	</wsp:Policy>
	</sp:ProtectionToken>
	<sp:AlgorithmSuite>
	<wsp:Policy>
	<sp:Basic128Rsa15/>
	</wsp:Policy>
	</sp:AlgorithmSuite>
	<sp:Layout>
	<wsp:Policy>
	<sp:Strict/>
	</wsp:Policy>
	</sp:Layout>
	<sp:IncludeTimestamp/>
	<sp:EncryptSignature/>
	<sp:OnlySignEntireHeadersAndBody/>
	</wsp:Policy>
	</sp:SymmetricBinding>
	<sp:EndorsingSupportingTokens>
	<wsp:Policy>
	<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
	<wsp:Policy>
	<sp:RequireThumbprintReference/>
	<sp:WssX509V3Token10/>
	</wsp:Policy>
	</sp:X509Token>
	</wsp:Policy>
	</sp:EndorsingSupportingTokens>
	<sp:Wss11>
	<wsp:Policy>
	<sp:MustSupportRefKeyIdentifier/>
	<sp:MustSupportRefIssuerSerial/>
	<sp:MustSupportRefThumbprint/>
	<sp:MustSupportRefEncryptedKey/>
	<sp:RequireSignatureConfirmation/>
	</wsp:Policy>
	</sp:Wss11>
	<sp:Trust10>
	<wsp:Policy>
	<sp:MustSupportIssuedTokens/>
	<sp:RequireClientEntropy/>
	<sp:RequireServerEntropy/>
	</wsp:Policy>
	</sp:Trust10>
	</wsp:Policy>
	</sp:BootstrapPolicy>
	</wsp:Policy>
	</sp:SecureConversationToken>
	</wsp:Policy>
	</sp:ProtectionToken>
	<sp:AlgorithmSuite>
	<wsp:Policy>
	<sp:Basic128Rsa15/>
	</wsp:Policy>
	</sp:AlgorithmSuite>
	<sp:Layout>
	<wsp:Policy>
	<sp:Strict/>
	</wsp:Policy>
	</sp:Layout>
	<sp:IncludeTimestamp/>
	<sp:EncryptSignature/>
	<sp:OnlySignEntireHeadersAndBody/>
	</wsp:Policy>
	</sp:SymmetricBinding>
	<sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
	<wsp:Policy>
	<sp:MustSupportRefKeyIdentifier/>
	<sp:MustSupportRefIssuerSerial/>
	<sp:MustSupportRefThumbprint/>
	<sp:MustSupportRefEncryptedKey/>
	</wsp:Policy>
	</sp:Wss11>
	<sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
	<wsp:Policy>
	<sp:MustSupportIssuedTokens/>
	<sp:RequireClientEntropy/>
	<sp:RequireServerEntropy/>
	</wsp:Policy>
	</sp:Trust10>
	<sp:EncryptedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
	<sp:Body/>
	</sp:EncryptedParts>
	<ramp:RampartConfig xmlns:ramp="http://ws.apache.org/rampart/policy">
	<ramp:user>bob</ramp:user>
	<ramp:encryptionUser>alice</ramp:encryptionUser>
	<ramp:passwordCallbackClass>org.apache.sandesha2.interop.PWCallback</ramp:passwordCallbackClass>

	<ramp:signatureCrypto>
	<ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
	<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
	<ramp:property name="org.apache.ws.security.crypto.merlin.file">store.jks</ramp:property>
	<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
	</ramp:crypto>
	</ramp:signatureCrypto>
	<ramp:encryptionCypto>
	<ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
	<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
	<ramp:property name="org.apache.ws.security.crypto.merlin.file">store.jks</ramp:property>
	<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
	</ramp:crypto>
	</ramp:encryptionCypto>

	<ramp:tokenIssuerPolicy xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
	<wsp:Policy>
	<sp:EncryptedParts>
	<sp:Body/>
	</sp:EncryptedParts>
	<sp:SymmetricBinding>
	<wsp:Policy>
	<sp:ProtectionToken>
	<wsp:Policy>
	<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
	<wsp:Policy>
	<sp:RequireDerivedKeys/>
	<sp:RequireThumbprintReference/>
	<sp:WssX509V3Token10/>
	</wsp:Policy>
	</sp:X509Token>
	</wsp:Policy>
	</sp:ProtectionToken>
	<sp:AlgorithmSuite>
	<wsp:Policy>
	<sp:Basic128Rsa15/>
	</wsp:Policy>
	</sp:AlgorithmSuite>
	<sp:Layout>
	<wsp:Policy>
	<sp:Strict/>
	</wsp:Policy>
	</sp:Layout>
	<sp:IncludeTimestamp/>
	<sp:EncryptSignature/>
	<sp:OnlySignEntireHeadersAndBody/>
	</wsp:Policy>
	</sp:SymmetricBinding>
	<sp:EndorsingSupportingTokens>
	<wsp:Policy>
	<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
	<wsp:Policy>
	<sp:RequireThumbprintReference/>
	<sp:WssX509V3Token10/>
	</wsp:Policy>
	</sp:X509Token>
	</wsp:Policy>
	</sp:EndorsingSupportingTokens>
	<sp:Wss11>
	<wsp:Policy>
	<sp:MustSupportRefKeyIdentifier/>
	<sp:MustSupportRefIssuerSerial/>
	<sp:MustSupportRefThumbprint/>
	<sp:MustSupportRefEncryptedKey/>
	<sp:RequireSignatureConfirmation/>
	</wsp:Policy>
	</sp:Wss11>
	<sp:Trust10>
	<wsp:Policy>
	<sp:MustSupportIssuedTokens/>
	<sp:RequireClientEntropy/>
	<sp:RequireServerEntropy/>
	</wsp:Policy>
	</sp:Trust10>
	</wsp:Policy>
	</ramp:tokenIssuerPolicy>

	</ramp:RampartConfig>
	</wsp:All>
	</wsp:ExactlyOne>
	</wsp:Policy>


	<parameter name="sct-issuer-config">
	<sct-issuer-config>
	<cryptoProperties>
	<crypto provider="org.apache.ws.security.components.crypto.Merlin">
	<property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</property>
	<property name="org.apache.ws.security.crypto.merlin.file">store.jks</property>
	<property name="org.apache.ws.security.crypto.merlin.keystore.password">password</property>
	</crypto>
	</cryptoProperties>
	<addRequestedAttachedRef />
	<addRequestedUnattachedRef />

	<!--
	Key computation mechanism
	1 - Use Request Entropy
	2 - Provide Entropy
	3 - Use Own Key
	-->
	<keyComputation>2</keyComputation>

	<!--
	proofKeyType element is valid only if the keyComputation is set to 3
	i.e. Use Own Key

	Valid values are: EncryptedKey & BinarySecret
	-->
	<proofKeyType>BinarySecret</proofKeyType>
	</sct-issuer-config>
	</parameter>

	<parameter name="token-canceler-config">
	<token-canceler-config>
	<!--<proofToken>EncryptedKey</proofToken>-->
	<!--<cryptoProperties>sctIssuer.properties</cryptoProperties>-->
	<!--<addRequestedAttachedRef />-->
	</token-canceler-config>
	</parameter>


	</service>