How to set WS-SecurityPolicy in an inbound CXF service in Mule?_问答_开发者

How to set WS-SecurityPolicy in an inbound CXF service in Mule?

开发者 https://www.devze.com 2023-01-01 00:53 出处：网络

When configuring the service for handling UsernameToken and signatures, it\'s setup like this: <service name=\"serviceName\">

When configuring the service for handling UsernameToken and signatures, it's setup like this:

<service name="serviceName">
  <inbound>
    <cxf:inbound-endpoint address="someUrl" protocolConnector="httpsConnector" >
      <cxf:inInterceptors>
        <spring:bean class="org.apache.cxf.binding.soap.saaj.SAAJInInterceptor" />
        <spring:bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor">
        <spring:constructor-arg>
          <spring:map>
            <spring:entry key="action" value="UsernameToken Timestamp Signature" />
            <spring:entry key="passwordCallbackRef" value-ref="serverCallback" />
            <spring:entry key="signaturePropFile" value="wssecurity.properties" />
          </spring:map>
        </spring:constructor-arg>
        </spring:bean>
      <开发者_JAVA百科;/cxf:inInterceptors>
    </cxf:inbound-endpoint>
  </inbound>
</service>

But how is it possible to create a policy of what algorithms that are allowed, and what parts of the message that should be signed?

You'd have to ask the Mule folks. Last I checked, they hadn't moved to CXF 2.2.x yet. If they ARE on 2.2.x, you could use the WS-SecPol support built into CXF.