UserNameToken « Security « Spring Q&A





1. WS-Security and UsernameToken; OASIS 2004 is old/obsolete/superseded, what's the state of the art?    stackoverflow.com

In another question Web service client needs to add type attribute to password security header it's claimed that the OASIS 2004 security model is obsolete. It confuses me slightly since the components ...

2. What's the easiest way to pass a usernametoken from a Spring WS client ?    forum.springsource.org

What's the easiest way to pass a usernametoken from a Spring WS client ? Hi. I want to use a WebserviceTemplate to call a web service secured using Spring Security. Below ...

3. WSS1408: UsernameToken Authentication Failed, after upgrading to SOAP 1.2 from 1.1    forum.springsource.org

WSS1408: UsernameToken Authentication Failed, after upgrading to SOAP 1.2 from 1.1 Hi, Kindly help. I use SOAP 1.2 while creating the WSDLs dynamically from the following entry in spring-ws-servlet.xml Code:

4. WS-Security UsernameToken Client Side    forum.springsource.org

WS-Security UsernameToken Client Side I am using the AcegiPlainTextPasswordValidationCallbackHandler on the server side to authenticate web services using WS-Security. I am at a point where I need to do some initial ...

5. milliseconds in UserNameToken wsu:created    forum.springsource.org

milliseconds in UserNameToken wsu:created Hi, jdk 1.5.1 MAX OS X Spring 2.5.1 spring-ws 1.5.0-m1 I'm trying to secure the client side WS requests. I've get everything working using a passwordDigest except ...

6. WSS4J Working with UsernameToken and TimeStamp    forum.springsource.org

Hi All, How do I configure the client and the server for Working with both UsernameToken and TimeStamp for WSS4J. Each of them work fine independently but I am trying to ...

7. UsernameToken and Encryption/Decryption    forum.springsource.org

8. UsernameToken client side and server side    forum.springsource.org

Hi all, I'm new with xwss and I wish to know where I can get an example with usernametoken security with spring + cxf + xwss. Thanks

9. Retrieve UsernameToken in Endpoint    forum.springsource.org





10. Use WS-Policy assertions to require UserNameToken instead of the    forum.springsource.org

Use WS-Policy assertions to require UserNameToken instead of the This perhaps isn't even specific to Spring-WS, but to the underlying XWSS package from Sun, but I noticed in the Spring-WS manual ...

11. Get username from SoapHeader's UsernameToken    forum.springsource.org

as title, How can I obtain the username from soapheader to perform further action? I already use SimplePasswordValidationCallbackHandler to do the authenticaiton successfully, then I need to get back the username ...

12. JaxWsPortProxyFactoryBean and WS-Security UsernameToken Profile    forum.springsource.org

JaxWsPortProxyFactoryBean and WS-Security UsernameToken Profile Hello, i need to write a Webservice Client that supports WS-Security UsernameToken Profile. The WSDL is provided and my client code looks like: Code:

13. Spring-ws & wss4j: modify wsu:Id in UsernameToken    forum.springsource.org

Spring-ws & wss4j: modify wsu:Id in UsernameToken I'm writing a client for an existing and external webservice. The service requires a specific value (constant) of the Id attribute in the UsernameToken ...

14. Getting the authenticated Subject from UserNameToken header    forum.springsource.org

Is there any easy way to get the authenticated Subject instance from a UserNameToken WS-Security SOAP header without writing my own XwsSecurityInterceptor or extracting it from the SOAP header myself? Seems ...

15. Nonce and Created checking in UsernameToken    forum.springsource.org

I am using Wss4jSecurityInterceptor to implement UsernameToken on the server side. I am able to send a message (and have them validated) that uses a Created element that is days old ...

16. WSE 3.0 and Spring WS Client UsernameToken Question    forum.springsource.org

We are using Spring 1.5.9 and (WSS4j 1.5.8) to access a web service developed in .NET and WSE compliant. Initial tests showed a discrepancy in sending the username token as the ...





17. usernameToken + signature    forum.springsource.org

Nov 2nd, 2010, 11:54 AM #1 bogdang View Profile View Forum Posts Private Message Junior Member Join Date Feb 2010 Posts 8 usernameToken + signature Hello, I am using spring-ws stack ...

18. How to use a SHA1 hashed password with Wss4jSecurityInterceptor(UsernameToken)    forum.springsource.org

I want to use a validate the password passed by the client against the SHA1 hashed password stored in the server. As I went through the Wss4jSecurityInterceptor, the option is to ...