users@jax-rpc.java.net

Re: [Fwd: Re: Serialization & encriptation]

From: Anil Kumar Tappetla <Anil.Tappetla_at_sun.com>
Date: Thu, 29 Jul 2004 12:42:54 +0530

Guadalupe,
          if you know how the un-encrypted parameters appear in your
request SOAP message, you can use our filters to encrypt them by
specifying their xpaths. For example for the following definitions in
your WSDL:
          <types>
                ..
               <complexType name="ping">
                  <sequence>
                      <element ref="tns:ticket" minOccurs="0"/>
                      <element ref="tns:text"/>
                  </sequence>
              </complexType>
              ..
          </types>
          <message name="PingRequest">
               <part name="ping" element="tns:Ping"/>
         </message>
         <portType name="PingPort">
               <operation name="Ping">
                    <input message="tns:PingRequest"/>
                   <output message="tns:PingResponse"/>
              </operation>
         </portType>

the SOAP request on the operation 'Ping', would look like:
        <env:Body>
            <ns0:Ping>
                   <ns0:ticket
xmlns:ans1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
ans1:Id="Id">..</ns0:ticket>
                   <ns0:text>..</ns0:text>
           </ns0:Ping>
       </env:Body>

You can specify the xpath to any one of the parameters, <ns0:ticket..>
and <ns0:text..> to encrypt them (either the complete element or only
its content).

Hope this helps.

Thanks,
Anil.

         

> Subject: Re: Serialization & encriptation
> Date: Wed, 28 Jul 2004 19:39:39 +0200
> From: Guadalupe Ortiz <gobellot_at_hotmail.com>
> Reply-To: users_at_jax-rpc.dev.java.net
> To: users_at_jax-rpc.dev.java.net
> References:
> <F87013A89AD3F040A73DEB2F4AF4CF940250A125_at_rrc-its-exs07.cc.telcordia.com>
> <4106833D.5070804_at_sun.com> <Sea1-DAV24J2ul6flpT00005df2_at_hotmail.com>
> <4107DCE0.5090804_at_sun.com>
>
>
>
>I know JWSDP1.4 offers a way to do it, but I was working on this with the
>previous section and I am really interested on trying it. Is it not posible
>to encrypt different kinds of parameters like with a cipher?
>
>----- Original Message -----
>From: "Doug Kohlert" <Doug.Kohlert_at_Sun.COM>
>To: <users_at_jax-rpc.dev.java.net>
>Sent: Wednesday, July 28, 2004 7:05 PM
>Subject: Re: Serialization & encriptation
>
>
>> Guadalupe,
>> JWSDP 1.4 contains Web Services Security. It will allow you to encrypt
>> and sign the entire SOAP message. It is not
>> possible to encrypt just the parameters short of you writing your own
>> handlers to do so.
>>
>> Guadalupe Ortiz wrote:
>>
>> >Here is my doubt:
>> >
>> >I want to make a call to a remote service wit the parameters encripted,
>but
>> >I want to keep the parameters type, I mean if the call is:
>> > callfunction_x(String parameterA, int parameterB, date Parameter_C), I
>> >want to make the call with an String, an int an a date parameers, but all
>of
>> >them encripted.
>> >Is it that posible? If so, can you suggest me how? Ive been trying with
>> >javax.crypto but I am not able to get the parameters encrypted but
>> >maintaining the type.
>> >Aby help is really grateful,
>> >Guadalupe
>> >
>> >---------------------------------------------------------------------
>> >To unsubscribe, e-mail: users-unsubscribe_at_jax-rpc.dev.java.net
>> >For additional commands, e-mail: users-help_at_jax-rpc.dev.java.net
>> >
>> >
>> >
>> >
>>
>> --
>> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>> Doug Kohlert
>>
>> Sun Microsystems, Inc.
>> doug.kohlert_at_sun.com
>> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>>
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: users-unsubscribe_at_jax-rpc.dev.java.net
>> For additional commands, e-mail: users-help_at_jax-rpc.dev.java.net
>>
>>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: users-unsubscribe_at_jax-rpc.dev.java.net
>For additional commands, e-mail: users-help_at_jax-rpc.dev.java.net
>
>
>