Further information – Sun Microsystems GLASSFISH ENTERPRISE 820433510 User Manual
Page 140
<log-service file=
"" level="WARNING"/>
<message-security-config auth-layer=
"SOAP"
default-client-provider=
"ClientProvider">
<provider-config
class-name=
"com.sun.enterprise.security.jauth.ClientAuthModule"
provider-id=
"ClientProvider" provider-type="client">
<request-policy auth-source=
"sender | content"
auth-recipient=
"after-content | before-content"/>
<response-policy auth-source=
"sender | content"
auth-recipient=
"after-content | before-content"/>
<property name=
"security.config"
value=
"as-install/lib/appclient/wss-client-config.xml"/>
</provider-config>
</message-security-config>
</client-container>
Valid values for auth-source include sender and content. Valid values for auth-recipient
include before-content and after-content. A table describing the results of various
combinations of these values can be found in
“Actions of Request and Response Policy
To not specify a request or response policy, leave the element blank, for example:
<response-policy/>
Further Information
■
The Java 2 Standard Edition discussion of security can be viewed from
■
The Java EE 5.0 Tutorial chapter titled Security can be viewed from
■
The Administration Guide chapter titled .
■
The Developer’s Guide chapter titled Securing Applications.
■
The XML-Signature Syntax and Processing document can be viewed at
■
The XML Encryption Syntax and Processing document can be viewed at
Message Security Setup
Sun GlassFish Enterprise Server 2.1 Administration Guide • December 2008
140