+

Search Tips   |   Advanced Search

Signing parameter settings


To configure new signing parameters.

This admin console panel applies only to Java™ API for XML-based RPC (JAX-RPC) applications.

There is an important distinction between V 5.x and V6 and later applications. The information in this article supports V5.x applications only that are used with WAS V6.0.x and later. The information does not apply to V6.0.x and later applications.

The specifications that are listed on this page for the signature method, digest method, and canonicalization method are located in the World Wide Web Consortium (W3C) document entitled, XML Signature Syntax and Specification: W3C Recommendation 12 Feb 2002.

  1. Click Applications > Application Types > WebSphere enterprise apps > application_name.

  2. Under Modules, click Manage modules > URI_name.

  3. Under Additional properties, we can access the signing information for the following bindings:

    1. For the Request sender binding, click Web services: Client security bindings. Under Request sender binding, click Edit. Under Additional properties, click Signing information.

    2. For the Response sender binding, click Web services: Server security bindings. Under Response sender binding, click Edit. Under Additional properties, click Signing information.

  4. In the Request Sender Binding column, click Edit > Signing Information.

If the signing information is not available, select None.

If the signing information is available, select Dedicated Signing Information and specify the configuration in the following fields:

Signature method

Algorithm Uniform Resource Identifiers (URI) of the signature method.

The following algorithms are supported:

  • http://www.w3.org/2000/09/xmldsig#rsa-sha1

  • http://www.w3.org/2000/09/xmldsig#dsa-sha1

  • http://www.w3.org/2000/09/xmldsig#hmac-sha1

We can also add custom algorithms.

Digest method

Algorithm URI of the digest method.

WAS supports the http://www.w3.org/2000/09/xmldsig#sha1 algorithm.

Canonicalization method

Algorithm URI of the canonicalization method.

The following algorithms are supported:

Key name

Name of the key object found in the keystore file.

Key locator reference

Name used to reference the key locator

Configure these key locator reference options on the cell level, the server level, and the application level. The configurations that are listed in the field are a combination of the configurations on these three levels.

We can specify a key locator configuration for the following bindings on the following levels:


Table 1. Key locator binding settings

Binding name Cell level, server level, or application level Path
N/A Cell level

  1. Click Security > JAX-WS and JAX-RPC security runtime.

  2. Under Additional properties, click Key locators.
N/A Server level

  1. Click Servers > Server Typ > WebSphere application servers > server_name.

  2. Under Security, click JAX-WS and JAX-RPC security runtime.

    In a mixed node cell with a server using Websphere Application Server version 6.1 or earlier, click Web services: Default bindings for WS-Security

  3. Under Additional properties, click Key locators.
Request sender Application level

  1. Click Applications > Application Types > WebSphere enterprise apps > application_name.

  2. Under Modules, click Manage modules > URI_name.

  3. Click Web services: Client security bindings.

  4. Under Request sender binding, click Edit.

  5. Under Additional properties, click Key locators.
Request receiver Application level

  1. Click Applications > Application Types > WebSphere enterprise apps > application_name.

  2. Under Modules, click Manage module > URI_name.

  3. Click Web services: WAS security bindings.

  4. Under Request receiver binding, click Edit.

  5. Under Additional properties, click Key locators.
Response sender Application level

  1. Click Applications > Application Types > WebSphere enterprise apps > application_name.

  2. Under Modules, click Manage module > URI_name.

  3. Click Web services: WAS security bindings.

  4. Under Response sender binding, click Edit.

  5. Under Additional properties, click Key locators.
Response receiver Application level

  1. Click Applications > Application Types > WebSphere enterprise apps > application_name.

  2. Under Modules, click Manage modules > URI_name.

  3. Click Web services: Client security bindings.

  4. Under Response receiver binding, click Edit.

  5. Under Additional properties, click Key locators.




 

Related tasks


Secure Web services for V5.x applications based on WS-Security

 

Related


Request sender binding collection