Best unofficial Apache Server developers community |
Signature and encryption in security policy
| |||||
| Feb 8, 2012 | |||||
 Andrei Shakirin |
|
||||
| Tags: | |||||
|
ws-security.signature.properties throws a org.apache.ws.security.message.token.X509Security.getX509C August 9, 2011 09:35:51 AM Hello I'musing cxf 2.3.1 because we use a jboss 6.0.0.Final I have wsdl with a policy: <sp:EndorsingSupportingTokens> <wsp:Policy> <sp:X509Token… Created: (CXF-2960) Loading of Signature and Encryption property files not trimming trailing whitesp August 26, 2010 08:16:33 AM Loading of Signature and Encryption property files not trimming trailing whitespace - Leads to ClassNotFoundException Signature only in policy for Username Token September 27, 2011 06:04:25 PM Hi, With the following policy definition, the header is sent encrypted. How can I get the client to only sign and not encrypt? ------ <wsp:Policy wsu:Id="UsernameToken" … Commented: (DERBY-3712) Security documentation should state that your java security policy needs to February 14, 2011 06:46:43 PM [ https://issues.apache.org/jira/browse/DERBY-3712?page=com.atlassian.ji ra.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId= 12994598#comment-12994598 ] Dag H. Wanvik commented on DERBY-3712: Created] (CXF-4028) X509TokenValidator uses signature-crypto-provider instead of encryption-crypto-p January 12, 2012 09:07:40 AM X509TokenValidator uses signature-crypto-provider instead of encryption-crypto-provider Created: (CXF-2963) Signature coverage of signed XML Encryption elements created using standard WSS4 August 27, 2010 04:02:35 PM Signature coverage of signed XML Encryption elements created using standard WSS4J elements cannot be verified with WS-SP configuration or the CryptoCoverageChecker ws-security.signature.crypto example March 7, 2011 12:59:13 PM Does anyone have an example of using ws-security.signature.crypto? This is with regards to the http://cxf.apache.org/docs/ws-securitypolicy.html. I am using JaxWsProxyFactoryBean. Thanks...jay CXF - WS Security - Signature - Issuer Name December 28, 2011 09:54:04 PM it is possible in CXF to disable EMAILADRESS encoding When my CXF app sign a response, this is the output: <ds:X509IssuerName xmlns:ds='http://www.w3.org/2000/09/xmldsig#'>CN=Pepe Certificate… CXF - WS Security - Signature X509 - signatureKeyIdentifier - key identifier type December 28, 2011 05:19:09 PM Hi I need to implement ws security(CXF) with Signature. The default configuration Issuer Name and Serial Number works fine. I want to invoke from soap ui with others "key identifier types" like BinarySecurityToken, x509 or SubjectKeyIdentifier… moving to cxf 2.5 org.apache.ws.security.WSSecurityException: The signature or decryption was inv December 15, 2011 10:23:46 AM trying cxf with 2.50 caused this error It works good with cxf 2.2.6, wss4j 1.5.8 now I am trying to migrate to cxf 2.5.0 I get the error and wss4j 1.6.0. ws-policy + ws-security October 23, 2011 05:27:50 PM Hi Forum, I need to add ws-policy + ws-security to an existing web service that I have implemented in spring-ws. With spring ws, it seems that there is a manual step to go from writing the policy in the wsdl to configuring the security handling. … Re: CXF with WS Security Policy October 5, 2010 05:12:27 AM I've adde both CXF and Metro generated SOAP messages from client so that it easier to read than the ones in the post. Kind regards, David http://cxf.547215.n5.nabble.com/file/n3199099/cxf-soap.xml cxf-soap.xml … Catalina.policy file for security option November 7, 2011 05:07:11 AM Dear tomcat users, I have try to configure my really old tomcat5 configuration (for using -security). but tomcat is not running. On my system tomcat5 is run only as servlet engine and not as web server. Do you have any example catalina.policy… Updated: (CAMEL-313) Add a security policy features June 30, 2010 10:10:53 AM [ https://issues.apache.org/activemq/browse/CAMEL-313?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Claus Ibsen updated CAMEL-313: Resolved: (CAMEL-313) Add a security policy features September 19, 2010 03:53:26 AM [ https://issues.apache.org/activemq/browse/CAMEL-313?page=com.atlassian .jira.plugin.system.issuetabpanels:all-tabpanel ] Claus Ibsen resolved CAMEL-313. Commented: (CAMEL-313) Add a security policy features July 14, 2010 03:19:51 PM [ https://issues.apache.org/activemq/browse/CAMEL-313?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=60668#action_60668 ] Ashwin Karpe commented on CAMEL-313: Need to have different security settings / policy based on where SMTP connection is coming from, how February 16, 2011 03:45:08 PM Greetings, I am working on getting Exim properly configured (configuration expanded) to securely host GNU Mailman on a server presently running Exim for localhost messages only. The server is running Ubuntu 8.04-x64 and the official Ubuntu… Need to have different security settings / policy based on where SMTP connection is coming from, how February 16, 2011 03:45:07 PM Greetings, I am working on getting Exim properly configured (configuration expanded) to securely host GNU Mailman on a server presently running Exim for localhost messages only. The server is running Ubuntu 8.04-x64 and the official Ubuntu… Updated: (DERBY-2466) Allow dynamic reloading of the security policy file January 21, 2011 12:54:12 PM [ https://issues.apache.org/jira/browse/DERBY-2466?page=com.atlassian.ji ra.plugin.system.issuetabpanels:all-tabpanel ] Rick Hillegas updated DERBY-2466: DO NOT REPLY New: Additional catalina.policy entries for when Security Manager enabled, for session March 2, 2011 09:07:22 AM https://issues.apache.org/bugzilla/show_bug.cgi?id=50854 Summary: Additional catalina.policy entries for when Security Manager enabled, for session display functionality Product: Tomcat 7 … Validate new AD password according to local security policy? February 20, 2011 I would like to allow the current user to change their password (managed via active directory). I would like to validate and then set their password… SocketAsyncEventArgs Encryption -- SSL vs. Custom Pre-Transmission Encryption March 17, 2011 Hello, I'm working on implementing a high-performance server using IOCP & SocketAsyncEventArgs. From what I've read, getting SSL using this… Why do I get "security.Groups: Group mapping impl=org.apache.hadoop.security.ShellBasedUnixGroupsMapping; cacheTimeout=300000"? April 16, 2011 $hdfs dfs -rmr crawl 11/04/16 08:49:33 INFO security.Groups: Group mapping impl=org.apache.hadoop.security.ShellBasedUnixGroupsMapping;… Cache policy in php February 7, 2011 hello all, i retrieve data from database which consists of images as well as other fields and then encode it in json format using php script.Now the… Tomcat log policy January 11, 2011 I'm parsing gigantic Tomcat log files and I was wondering: when you stop, redeploy and then restart a Webapp, do the logs get automatically appended… Policy query execution April 17, 2011 When I insert a new record in the users table, first check email and nickname were not already added. There is a possibility that another user who… CNAME to get around same-origin policy? April 13, 2011 I'm embedding an application via iframe into a someones site and need to be able to call a few of their javascript functions. Clearly running a… Watchdog XTM21 11.3 Firewall Policy January 2, 2011 I cannot seem to find where to allow file types through the FTP-Proxy Firewall Policy. I can find the area to Deny them, though. Can someone please… Redirect Loop Problem for Web Policy Agent? June 21, 2011 I followed the installation guide for an Apache Web Policy Agent, but it always results in an endless redirect loop between web and application… Iptables: change policy or use catch-all rule? May 9, 2011 What do you do when setting up iptables: change the default policy ( iptables -P INPUT DROP , for example) or add a catch-all rule at the end of the… Does the Eclipse Web browser implements the "Same Origin policy"? April 15, 2011 Everything is the question. I have a small web client that makes some HTTP request to a server but the problem is that the server is not on the same… Changing MySQL index syncing policy? May 21, 2011 How can I set the sync-policy of an already made index in MySQL? I have a huge index that I really can't rebuild, but it is prohibiting me by… IPv6 and Windows Group Policy-based Firewall April 15, 2011 So at work we're playing with using freenet6 to get an IPv6 tunnel up and running. That's working great and all, and I've got it set to advertise… Tcpdump output with iptables REJECT policy enabled February 9, 2011 Hi all, Quick question. I have a firewall with these simple rules: iptables -A INPUT -p tcp -s 127.0.0.1/32 --dport 6000 -j ACCEPT iptables -A INPUT… Enabling WMI and corresponding firewall exception via a Group Policy Object May 27, 2011 Hey guys, I have tried enabling WMI on my local domain using a group policy object which sets the service as on at startup. In addition i added an… Setting java.io.FilePermission for a particular type of file in catalina.policy June 21, 2011 I am deploying multiple webapps on tomcat6. Each webapp has its own SQLite database (which is under WEB-INF/). I have security manager enabled for… Circumventing browser same origin policy with a proxy in Rails 3 application April 18, 2011 I'm looking for a rails solution that can consume multiple remote XML services, passing dynamic request parameters and outputting the response as… C# Validate Signature May 4, 2011 Hello! I have the following code to sign my data before sending it (http): internal static byte[] Encode(byte[] arMessage, string signerCert, string… Jboss application-policy ignored in mutual/client-cert auth with PBESecurityDomain January 14, 2011 With the following, mutual client cert, SSL (TLS) handshake works for a rest endpoint (yay!) - validated via testing and debugging: javax.net… Dkim signature problem April 20, 2011 Hi, i m going mad with dkim-filter + postfix my message are signed but GMAIL notify me errors like "dkim=neutral(no signature)" or "dkim=neutral(bad… | |||||
(81 lines) Feb 8, 2012 10:03
(102 lines) Feb 9, 2012 03:00
(143 lines) Feb 9, 2012 04:12