Wednesday, May 11, 2011

WS-Security with SOAP UI

KEYTOOL CERTIFICATE GENERATION

keytool -genkey -alias bookstoreclient -keypass keypassword -keystore client-keystore.jks -storepass b00k5t0r3 -dname "cn=bookstore" -keyalg RSA
keytool -selfcert -alias bookstoreclient -keystore client-keystore.jks -storepass b00k5t0r3 -keypass keypassword
keytool -export -alias bookstoreclient -file key.rsa -keystore client-keystore.jks -storepass b00k5t0r3
keytool -import -noprompt -alias bookstoreclient -file key.rsa -keystore server-keystore.jks -storepass b00k5t0r3

SERVER_SIGN.PROPERTIES

org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
org.apache.ws.security.crypto.merlin.keystore.type=jks
org.apache.ws.security.crypto.merlin.keystore.password=b00k5t0r3
org.apache.ws.security.crypto.merlin.file=C:\\certificates\\server-keystore.jks

CXF

<bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature">
<entry key="signaturePropFile" value="server_sign.properties">
</entry>
</map>
</constructor-arg>
</bean>




Posted by at 1 comment:

RESOLVE MACHINE NAME TO HOST NAME

1. Find you ID



2. Apply patch as described here

cscript.exe //nologo %systemdrive%\inetpub\adminscripts\adsutil.vbs set W3SVC/your_website_identifier_here/SecureBindings “:443:my.publicserver.com”

3. Restart IIS
Posted by at No comments:
Labels:
Subscribe to: Posts (Atom)