josh
Reputation: 11
how to add timestamp to signature using Wss4jSecurityInterceptor / Spring WS
I want to add a timestmap to my signature that expires in 20000 ms. What do i have to add to my config?
I have my conf as follows:
<bean class="org.springframework.ws.soap.security.wss4j.Wss4jSecurityInterceptor">
<property name="securementActions" value="Signature"/>
<property name="securementUsername" value="mykey"/>
<property name="securementPassword" value="123456"/>
<property name="securementSignatureCrypto">
<bean class="org.springframework.ws.soap.security.wss4j.support.CryptoFactoryBean">
<property name="keyStorePassword" value="123456"/>
<property name="keyStoreLocation" value="classpath:/keystore.jks"/>
</bean>
</property>
</bean>Upvotes: 0
Views: 1694
Answers (1)
VirtualTroll
Reputation: 3091
You could do the following (source here section 7.3.4.1):
<bean class="org.springframework.ws.soap.security.wss4j.Wss4jSecurityInterceptor">
<property name="validationActions" value="Timestamp"/>
<property name="timestampStrict" value="true"/>
<property name="timeToLive" value="10"/>
</bean>
It seems that the newer versions have the following property name "securementTimeToLive" instead of the timeToLive and it is set by default to 300.
Upvotes: 1
Related Questions
- Java - Adding BinarySecurityToken right after wsu:Timestamp element
- How to set timestamp manually on spring-ws security
- How to set timestamp value to a @RequestParam variable of get service?
- WCF Service with WS-Security requires Signed Timestamp only
- How to specify that the Timestamp that's part of WS-Security needs to be signed + fix error that client did not sign timestamp with id xxx?
- Validate SOAP response xml timestamp and signature X509 spring-ws-security
- WSS4J with Spring WS : (WSSecurityEngine: Invalid timestamp The security semantics of the message have expired)
- Remove timestamp element from ws-security headers created by WCF
- Timestamp in web services
- Using timestamps causing trouble with WSDL generation