Versions Compared

Old Version 51

changes.mady.by.user Colm O hEigeartaigh

Saved on

compared with

New Version 52

changes.mady.by.user Glen Mazza

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Changed the text to highlight WS-SecPol as the preferred first option.

...

  • Pass authentication tokens between services
  • Encrypt messages or parts of messages
  • Sign messages
  • Timestamp messages

Currently, CXF implements CXF relies on WSS4J in large part to implement WS-Security by integrating WSS4J. To use the integration, you'll need to configure these interceptors and add them to your service and/or client as detailed in this article. Alternatively. Within your own services, WS-Security can be implemented activated by using WS-SecurityPolicy, which provides a more comprehensive and sophisticated validation of the security properties of a received message. A non-WS-SecurityPolicy approach is usually also possible by way of CXF interceptors added to your service and/or client as detailed in this article.

Overview of encryption and signing

...