Signing parameter configuration settings
Configure new signing parameters.
This administrative console page applies only to JAX-RPC applications.
The specifications listed on this page for the signature method, digest method, and canonicalization method are located in the World Wide Web Consortium (W3C) document entitled, XML Signature Syntax and Specification: W3C Recommendation 12 Feb 2002.
To view this administrative console page:
- Click Applications > Application Types > WebSphere enterprise applications > application_name.
- Under Modules, click Manage modules > URI_name.
- Under Additional properties, we can access the signing information for the following bindings:
- For the Request sender binding, click Web services: Client security bindings. Under Request sender binding, click Edit. Under Additional properties, click Signing information.
- For the Response sender binding, click Web services: Server security bindings. Under Response sender binding, click Edit. Under Additional properties, click Signing information.
- In the Request Sender Binding column, click Edit > Signing Information.
If the signing information is not available, select None.
If the signing information is available, select Dedicated Signing Information and specify the configuration in the following fields:
Signature method
Algorithm Uniform Resource Identifiers (URI) of the signature method.
The following algorithms are supported:
- http://www.w3.org/2000/09/xmldsig#rsa-sha1
- http://www.w3.org/2000/09/xmldsig#dsa-sha1
- http://www.w3.org/2000/09/xmldsig#hmac-sha1
- We can also add custom algorithms.
Digest method
Algorithm URI of the digest method.
WAS supports the http://www.w3.org/2000/09/xmldsig#sha1 algorithm.
Canonicalization method
Algorithm URI of the canonicalization method.
The following algorithms are supported:
- http://www.w3.org/2001/10/xml-exc-c14n#
- http://www.w3.org/2001/10/xml-exc-c14n#WithComments
- http://www.w3.org/TR/2001/REC-xml-c14n-20010315
- http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments
Key name
Name of the key object found in the keystore file.
Key locator reference
Name used to reference the key locator
We can configure these key locator reference options on the cell level, the server level, and the application level. The configurations listed in the field are a combination of the configurations on these three levels.
We can specify a key locator configuration for the following bindings on the following levels:
| Binding name | Cell level, server level, or application level | Path |
|---|---|---|
| N/A | Cell level |
|
| N/A | Server level |
|
| Request sender | Application level |
|
| Request receiver | Application level |
|
| Response sender | Application level |
|
| Response receiver | Application level |
|
Mixed-version environment: In a mixed node cell with a server using Websphere
Application Server version 6.1 or earlier, click Web services:
Default bindings for Web Services Security.mixv
Related: