JAAS configuration |
com.ibm.wsspi.wssecurity. token.X509.issuerName |
Specify the SubjectDN or the IssuerDN of the issuer
for the X.509 certificate. |
This property is used to specify the issuer of the certificate
in the token consumer component. |
JAAS configuration |
com.ibm.wsspi.wssecurity. token.X509.issuerSerial |
Specify the serial number of the X.509 certificate. |
This property is used to specify the serial number of
the certificate in the token consumer component. |
Key information |
com.ibm.wsspi.wssecurity. keyinfo.EncodingNS |
Specify the namespace Uniform Resource Identifier (URI)
for the qualified name (QName). |
This property is used to specify the namespace URI part
of the QName that represents the encoding method. |
Properties |
com.ibm.ws.wssecurity. handler.hardwareCacheEntryRefreshHours |
Specify a numeric value from 1 to 24 that represents
the number of hours that a temporary key is valid. |
This property is used to specify the amount of time
before a key is retranslated. Temporary keys outside the keystore typically
expire in a short period of time, measured in days or hours. If the server
is configured to use a hardware acceleration card, but not the hardware keystore,
you can configure it to translate the temporary keys periodically before they
expire. If this property is not set , a key will be retranslated after 8 hours.
Setting this value to 0 disables retranslation. |
Request generator and Response generator |
com.ibm.wsspi.wssecurity. timestamp.SOAPHeaderElement |
Specify 1 or true. |
This property is used with the Add nonce option
to set the mustUnderstand flag in the deployment descriptor. |
Request generator and Response generator |
com.ibm.wsspi.wssecurity. timestamp.dialect |
|
|
Signing information |
com.ibm.wsspi.wssecurity. dsig.dumpPath |
Specify the path used to locate the output file. |
This property is used to specify an output file for
dumping the target UTF-8 binary data before signing and verifying messages. |
Token generator |
com.ibm.wsspi.wssecurity. token.username.timestampExpires |
Specify 1 or true. |
This property is used to specify an expiration date
for the user name token. |
Transform algorithms |
com.ibm.wsspi.wssecurity. dsig.XPathExpression |
not(ancestor-or-self::* [namespace-uri()= 'http://www.w3.org/2000 /09/xmldsig#' and local-name()='Signature'])
|
This property is used with this algorithm: http://www.w3.org/TR/1999
/REC-xpath-19991116
|