Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <wsp:Policy wsu:Id="SAML11HoKProtection32"
- xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
- xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
- xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata" xmlns:wsaw="http://www.w3.org/2005/08/addressing"
- xmlns:wsx='http://schemas.xmlsoap.org/ws/2004/09/mex'>
- <wsp:ExactlyOne>
- <wsp:All>
- <sp:AsymmetricBinding
- xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
- <wsp:Policy>
- <sp:InitiatorToken>
- <wsp:Policy>
- <spn:IssuedToken xmlns:spn="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702"
- spn:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient">
- <spn:Issuer>
- <Address xmlns="http://www.w3.org/2005/08/addressing">https://172.26.7.156:9443/services/wso2carbon-sts
- </Address>
- <wsaw:Metadata>
- <wsx:Metadata>
- <wsx:MetadataSection
- Dialect="http://schemas.xmlsoap.org/ws/2004/09/mex">
- <wsx:MetadataReference>
- <Address xmlns="http://www.w3.org/2005/08/addressing">http://localhost:8280/services/MEXService
- </Address>
- </wsx:MetadataReference>
- </wsx:MetadataSection>
- </wsx:Metadata>
- </wsaw:Metadata>
- </spn:Issuer>
- <spn:RequestSecurityTokenTemplate>
- <t:TokenType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0</t:TokenType>
- <t:KeyType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">http://schemas.xmlsoap.org/ws/2005/02/trust/Bearer</t:KeyType>
- <t:KeySize xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">256</t:KeySize>
- </spn:RequestSecurityTokenTemplate>
- <wsp:Policy>
- <sp:RequireInternalReference />
- </wsp:Policy>
- </spn:IssuedToken>
- </wsp:Policy>
- </sp:InitiatorToken>
- <sp:RecipientToken>
- <wsp:Policy>
- <sp:X509Token
- sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
- <wsp:Policy>
- <sp:RequireThumbprintReference />
- </wsp:Policy>
- </sp:X509Token>
- </wsp:Policy>
- </sp:RecipientToken>
- <sp:AlgorithmSuite>
- <wsp:Policy>
- <sp:Basic256 />
- </wsp:Policy>
- </sp:AlgorithmSuite>
- <sp:Layout>
- <wsp:Policy>
- <sp:Strict />
- </wsp:Policy>
- </sp:Layout>
- <sp:IncludeTimestamp />
- <sp:OnlySignEntireHeadersAndBody />
- </wsp:Policy>
- </sp:AsymmetricBinding>
- <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
- <wsp:Policy>
- <sp:MustSupportRefKeyIdentifier />
- <sp:MustSupportRefIssuerSerial />
- <sp:MustSupportRefThumbprint />
- <sp:MustSupportRefEncryptedKey />
- <sp:RequireSignatureConfirmation />
- </wsp:Policy>
- </sp:Wss11>
- <sp:Wss10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
- <wsp:Policy>
- <sp:MustSupportRefKeyIdentifier />
- <sp:MustSupportRefIssuerSerial />
- </wsp:Policy>
- </sp:Wss10>
- <rampart:RampartConfig xmlns:rampart="http://ws.apache.org/rampart/policy">
- <rampart:user>admin</rampart:user>
- <rampart:password>admin</rampart:password>
- <rampart:encryptionUser>wso2carbon</rampart:encryptionUser>
- <rampart:timestampPrecisionInMilliseconds>true
- </rampart:timestampPrecisionInMilliseconds>
- <rampart:timestampTTL>300</rampart:timestampTTL>
- <rampart:timestampMaxSkew>300</rampart:timestampMaxSkew>
- <rampart:timestampStrict>false</rampart:timestampStrict>
- <rampart:tokenStoreClass>org.wso2.carbon.security.util.SecurityTokenStore
- </rampart:tokenStoreClass>
- <rampart:nonceLifeTime>300</rampart:nonceLifeTime>
- <rampart:encryptionCrypto>
- <rampart:crypto cryptoKey="org.wso2.carbon.security.crypto.privatestore"
- provider="org.wso2.carbon.security.util.ServerCrypto">
- <rampart:property name="org.wso2.carbon.security.crypto.alias">wso2carbon
- </rampart:property>
- <rampart:property name="org.wso2.carbon.security.crypto.privatestore">wso2carbon.jks
- </rampart:property>
- <rampart:property name="org.wso2.stratos.tenant.id">-1234</rampart:property>
- <rampart:property name="org.wso2.carbon.security.crypto.truststores">wso2carbon.jks,
- </rampart:property>
- <rampart:property name="rampart.config.user">wso2carbon
- </rampart:property>
- </rampart:crypto>
- </rampart:encryptionCrypto>
- <rampart:signatureCrypto>
- <rampart:crypto cryptoKey="org.wso2.carbon.security.crypto.privatestore"
- provider="org.wso2.carbon.security.util.ServerCrypto">
- <rampart:property name="org.wso2.carbon.security.crypto.alias">wso2carbon
- </rampart:property>
- <rampart:property name="org.wso2.carbon.security.crypto.privatestore">wso2carbon.jks
- </rampart:property>
- <rampart:property name="org.wso2.stratos.tenant.id">-1234</rampart:property>
- <rampart:property name="org.wso2.carbon.security.crypto.truststores">wso2carbon.jks,
- </rampart:property>
- <rampart:property name="rampart.config.user">wso2carbon
- </rampart:property>
- </rampart:crypto>
- </rampart:signatureCrypto>
- </rampart:RampartConfig>
- </wsp:All>
- </wsp:ExactlyOne>
- </wsp:Policy>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement