Subject: WSE 2.0 Security Policy
Posted By: sloesch Post Date: 12/27/2005 4:09:02 PM
I need to create a policy file for my Web Service with security built-in and
I’m using VB.net and WSE 2.0 to do it.

I am new to building Web Services, so any help would be appreciated.  So
far, I know I need to add a <policy></policy> tag in the WEB.config, and
between the tags would be the name of the xml document that has the policies
in it.  Is there anything else that I should include in the Web.config file?

I have created this policyCache.xml document and added it to my project.  In
researching what needs to go in my policy I have come across many examples,
and I would like to know what each tag means and the definition on how to use
them.  Can anyone tell me where to find this information?  Below is a sample
I found that I am trying to understand.

<policyDocument>
  <mappings>
    <endpoint>
      <operation/>
      <defaultOperation>
        <request/>
        <response/>
        <fault/>
      </defaultOperation>
    </endpoint>
    <endpoint>
      <defaultOperation>
        <request/>
        <response/>
        <fault/>
      </defaultOperation>
    </endpoint>
    <defaultEndpoint>
      <defaultOperation>
        <request/>
        <response/>
        <fault/>
      </defaultOperation>
    </defaultEndpoint>
  </mappings>
  <policies>
    <wsp:Policy>
      <wssp:Confidentiality>
        <wssp:KeyInfo>
          <wssp:SecurityToken>
            <wssp:TokenType></wssp:TokenType>
          </wssp:SecurityToken>
        </wssp:KeyInfo>
        <wssp:MessageParts></wssp:MessageParts>
      </wssp:Confidentiality>
    </wsp:Policy>
    <wsp:Policy>
      <wssp:Confidentiality>
        <wssp:KeyInfo>
          <wsse:SecurityTokenReference>
            <wsse:KeyIdentifier></wsse:KeyIdentifier>
          </wsse:SecurityTokenReference>
        </wssp:KeyInfo>
        <wssp:MessageParts></wssp:MessageParts>
      </wssp:Confidentiality>
    </wsp:Policy>
    <wsp:Policy>
      <wssp:Integrity>
        <wssp:TokenInfo>
          <wssp:SecurityToken>
            <wssp:TokenType></wssp:TokenType>
          </wssp:SecurityToken>
        </wssp:TokenInfo>
        <wssp:MessageParts></wssp:MessageParts>
      </wssp:Integrity>
    </wsp:Policy>
    <wsp:Policy>
      <wssp:Integrity>
        <wssp:TokenInfo>
          <wsp:OneOrMore>
            <wssp:SecurityToken>
              <wssp:TokenType></wssp:TokenType>
            </wssp:SecurityToken>
            <wssp:SecurityToken>
              <wssp:TokenType></wssp:TokenType>
            </wssp:SecurityToken>
          </wsp:OneOrMore>
        </wssp:TokenInfo>
        <wssp:MessageParts></wssp:MessageParts>
      </wssp:Integrity>
    </wsp:Policy>
  </policies>
</policyDocument>

Thanks,

Go to topic 37997

Return to index page 409
Return to index page 408
Return to index page 407
Return to index page 406
Return to index page 405
Return to index page 404
Return to index page 403
Return to index page 402
Return to index page 401
Return to index page 400