Signing parameter configuration settings

[Version 5 only]

Signing parameter configuration settings

Use this page to configure new signing parameters.

Important distinction between Version 5.x and Version 6 applications

Note: The information in this article supports version 5.x applications only that are used with WebSphere Application Server Version 6. The information does not apply to version 6 applications.

The specifications that are listed on this page for the signature method, digest method, and canonicalization method are located in the World Wide Web Consortium (W3C) document entitled, XML Signature Syntax and Specification: W3C Recommendation 12 Feb 2002. To view this administrative console page, complete the following steps:

Click Enterprise Applications > application_name.
Under Related items, click EJB modules or Web Modules > URI_file_name
Under Additional properties, you can access the signing information for the following bindings:
1. For the Request sender binding, click Web services: Client security bindings . Under Request sender binding, click Edit. Under Additional properties, click Signing information .
2. For the Response sender binding, click Web services: Server security bindings . Under Response sender binding, click Edit. Under Additional properties, click Signing information .
In the Request Sender Binding column, click Edit > Signing Information .

If the signing information is not available, select None .

If the signing information is available, select Dedicated Signing Information and specify the configuration in the following fields:

Signature method

The algorithm Uniform Resource Identifiers (URI) of the signature method. The following algorithms are supported:

http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/Overview.html#rsa-sha1
http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/Overview.html#dsa-sha1
http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/Overview.html#hmac-sha1

You can also add custom algorithms.

Digest method

The algorithm URI of the digest method.

WebSphere Application Server supports the http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/Overview.html#sha1 algorithm.

Canonicalization method

The algorithm URI of the canonicalization method. The following algorithms are supported:

Key name

The name of the key object found in the keystore file.

Key locator reference

The name used to reference the key locator

You can configure these key locator reference options on the cell level, the server level, and the application level. The configurations that are listed in the field are a combination of the configurations on these three levels. You can specify a key locator configuration for the following bindings on the following levels:

Binding name Cell level, server level, or application level Path

N/A Cell level

Click Security > Web services .
Under Additional properties, click Key locators .

N/A Server level

Click Servers > Application servers > server_name.
Under Security, click Web services: Default bindings for Web services security .
Under Additional properties, click Key locators .

Request sender Application level

Click Applications > Enterprise applications > application_name.
Under Related items, click EJB modules > URI_name.
Click Web services: Client security bindings .
Under Request sender binding, click Edit .
Under Additional properties, click Key locators .

Request receiver Application level

Click Applications > Enterprise applications > application_name.
Under Related items, click EJB modules > URI_name.
Click Web services: Server security bindings .
Under Request receiver binding, click Edit .
Under Additional properties, click Key locators .

Response sender Application level

Click Applications > Enterprise applications > application_name.
Under Related items, click EJB modules > URI_name.
Click Web services: Server security bindings .
Under Response sender binding, click Edit .
Under Additional properties, click Key locators .

Response receiver Application level

Click Applications > Enterprise applications > application_name.
Under Related items, click EJB modules > URI_name.
Click Web services: Client security bindings .
Under Response receiver binding, click Edit .
Under Additional properties, click Key locators .

Binding name	Cell level, server level, or application level	Path
N/A	Cell level	Click Security > Web services . Under Additional properties, click Key locators .
N/A	Server level	Click Servers > Application servers > server_name. Under Security, click Web services: Default bindings for Web services security . Under Additional properties, click Key locators .
Request sender	Application level	Click Applications > Enterprise applications > application_name. Under Related items, click EJB modules > URI_name. Click Web services: Client security bindings . Under Request sender binding, click Edit . Under Additional properties, click Key locators .
Request receiver	Application level	Click Applications > Enterprise applications > application_name. Under Related items, click EJB modules > URI_name. Click Web services: Server security bindings . Under Request receiver binding, click Edit . Under Additional properties, click Key locators .
Response sender	Application level	Click Applications > Enterprise applications > application_name. Under Related items, click EJB modules > URI_name. Click Web services: Server security bindings . Under Response sender binding, click Edit . Under Additional properties, click Key locators .
Response receiver	Application level	Click Applications > Enterprise applications > application_name. Under Related items, click EJB modules > URI_name. Click Web services: Client security bindings . Under Response receiver binding, click Edit . Under Additional properties, click Key locators .

Related reference
Request sender binding collection

Searchable topic ID: uwbs_wsclientsign