使用 WebSphere、Spring-WS 和 WSS4J 进行 WebService 证书验证

发布于 2024-12-06 02:24:50 字数 835 浏览 1 评论 0原文

我正在开发一个使用 Spring-WS 2.0 提供 SOAP WebServices 的 Web 应用程序。 WebService 请求需要使用证书进行签名，该证书当然会在服务器上进行验证。为了做到这一点，使用 WSS4J 并使用信任库 - 这里是 spring-config：

<bean class="org.springframework.ws.soap.security.wss4j.Wss4jSecurityInterceptor">
    <property name="validationActions" value="Signature" />
    <property name="validationSignatureCrypto">
      <bean class="org.springframework.ws.soap.security.wss4j.support.CryptoFactoryBean">
        <property name="keyStorePassword" value="pass"/>
        <property name="keyStoreLocation" value="location"/>
      </bean>
    </property>
</bean>

应用程序应该部署到 WebSphere 7，主要要求是信任库不应随应用程序一起提供，而应由应用程序服务器提供。有谁知道我如何实现WebSphere 提供信任库或如何配置WebSphere 来执行安全授权？主要的挑战似乎是使用 Spring-WS，而不是使用 WebSphere 的 WebServices 工具......

原文

i'm working on a webapp offering SOAP WebServices using Spring-WS 2.0. The WebService Requests need to be signed with a certificate which is of course validated on the server. In order to do this WSS4J and a truststore is used - here the spring-config:

<bean class="org.springframework.ws.soap.security.wss4j.Wss4jSecurityInterceptor">
    <property name="validationActions" value="Signature" />
    <property name="validationSignatureCrypto">
      <bean class="org.springframework.ws.soap.security.wss4j.support.CryptoFactoryBean">
        <property name="keyStorePassword" value="pass"/>
        <property name="keyStoreLocation" value="location"/>
      </bean>
    </property>
</bean>

The application should be deployed to WebSphere 7 and the major requirement is, that the truststore should not be shipped with the application but be provided by the Application Server.
Does anybody know how i can achieve, that WebSphere either provides the truststore or how WebSphere can be configured to perform the security authorization ? The major challenge seems to be, that Spring-WS is used instead of using the WebSphere's facility for WebServices...

分享到QQ

分享到微博