Wednesday, May 11, 2011

WS-Security with SOAP UI

KEYTOOL CERTIFICATE GENERATION

keytool -genkey -alias bookstoreclient -keypass keypassword -keystore client-keystore.jks -storepass b00k5t0r3 -dname "cn=bookstore" -keyalg RSA
keytool -selfcert -alias bookstoreclient -keystore client-keystore.jks -storepass b00k5t0r3 -keypass keypassword
keytool -export -alias bookstoreclient -file key.rsa -keystore client-keystore.jks -storepass b00k5t0r3
keytool -import -noprompt -alias bookstoreclient -file key.rsa -keystore server-keystore.jks -storepass b00k5t0r3

SERVER_SIGN.PROPERTIES

org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
org.apache.ws.security.crypto.merlin.keystore.type=jks
org.apache.ws.security.crypto.merlin.keystore.password=b00k5t0r3
org.apache.ws.security.crypto.merlin.file=C:\\certificates\\server-keystore.jks

CXF

<bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature">
<entry key="signaturePropFile" value="server_sign.properties">
</entry>
</map>
</constructor-arg>
</bean>




Posted by at

1 comment:

  1. teeFebruary 2, 2012 at 7:53 PM

    Hi

    How is the WSS4JOutInterceptor look like in CXF file ? Why you dont have org.apache.ws.security.crypto.merlin.alias in SERVER_SIGN.PROPERTIES file ? Do you have the example of Timestamp Signature Encrypt ?

    ReplyDelete

Subscribe to: Post Comments (Atom)