Ignore:
Timestamp:
09/02/07 14:55:08 (13 years ago)
Author:
pjkersha
Message:

python/ndg.security.server/setup.py:

  • comment out Twisted from install - won't do egg install
  • updated long description

python/ndg.security.server/ndg/security/server/AttAuthority/server-config.tac:

  • added verifyingCertFilePath keyword to SignatureHandler? initialisation
  • added SSL capability

python/conf/attAuthorityProperties.xml,
python/ndg.security.test/ndg/security/test/AttAuthority/siteAAttAuthorityProperties.xml,
python/ndg.security.test/ndg/security/test/AttAuthority/siteBAttAuthorityProperties.xml,
python/ndg.security.server/ndg/security/server/AttAuthority/init.py:
added element names for reading SSL settings from properties file.

python/ndg.security.server/ndg/security/server/SessionMgr/server-config.tac:
added verifyingCertFilePath keyword to SignatureHandler? initialisation

python/conf/sessionMgrProperties.xml,
python/ndg.security.test/ndg/security/test/SessionMgr/sessionMgrProperties.xml,
python/ndg.security.server/ndg/security/server/SessionMgr/init.py:
added clntCertFile properties file element name for setting certificate for
verifying incoming SOAP messages.

python/ndg.security.server/ndg/security/server/SessionMgr/Makefile:
corrected typo.

python/ndg.security.server/ndg/security/server/MyProxy.py:
Put OpenSSLConfig and OpenSSLConfigError classes into their own package
'openssl' so that they can also be used by the Certificate Authority client.

python/www/html/certificateAuthority.wsdl,
python/ndg.security.server/ndg/security/server/ca/CertificateAuthority_services_server.py,
python/ndg.security.common/ndg/security/common/ca/CertificateAuthority_services_types.py,
python/ndg.security.common/ndg/security/common/ca/CertificateAuthority_services.py: updated operations to issueCert, revokeCert and getCRL.

python/ndg.security.test/ndg/security/test/AttAuthority/attAuthorityClientTest.cfg: changed address of service to connect to.

python/ndg.security.test/ndg/security/test/SessionMgr/sessionMgrClientTest.cfg:
alternative username connection settings

python/ndg.security.common/ndg/security/common/AttAuthority/init.py:
fixed typos in error message and comments.

ython/ndg.security.common/ndg/security/common/XMLSec.py: changed call to
getAttributeNodeNS to getAttributeNode for retrieving reference element URI
attribute.

python/ndg.security.common/ndg/security/common/ca/init.py: code for
Certificate Authority client

python/ndg.security.common/ndg/security/common/wsSecurity.py:

  • tidied up imports
  • added properties for setting keywords to reference and SignedInfo? C14N
  • changed sign method so that it is truely configurable allow use of inclusive or exclusive C14N based on the keywords set for reference and SignedInfo? C14N calls.
  • swapped calls to getAttributeNodeNS with getAttributeNode where appropriate.

java/DEWS/AttAuthority/appClientModule/META-INF/ibm-webservicesclient-bnd.xmi,
java/DEWS/AttAuthority/build/classes/META-INF/ibm-webservicesclient-bnd.xmi:
updated to that request generator correctly places X.509 cert in
BinarySecurityToken? element.

java/DEWS/AttAuthority/appClientModule/Main.java,
java/DEWS/AttAuthority/appClientjava/DEWS/AttAuthority/appClientModule/META-INF/ibm-webservicesclient-bnd.xmiModule/Main.java:
include calls to getX509Cert and getAttCert methods.

java/DEWS/SessionMgr/build/classes/META-INF/ibm-webservicesclient-bnd.xmi,
java/DEWS/SessionMgr/appClientModule/META-INF/ibm-webservicesclient-bnd.xmi:
updates for testing Session MAnager client

java/DEWS/SessionMgr/appClientModule/Main.java: switched username setting.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/python/www/html/certificateAuthority.wsdl

    r2130 r2136  
    11<?xml version="1.0" encoding="utf-8"?> 
    2 <wsdl:definitions name="SimpleCA" 
     2<wsdl:definitions name="CertificateAuthority" 
    33 xmlns="http://schemas.xmlsoap.org/wsdl/" 
    44 xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/" 
     
    77 xmlns:http="http://schemas.xmlsoap.org/wsdl/http/" 
    88 xmlns:xsd="http://www.w3.org/2001/XMLSchema" 
    9  xmlns:tns="urn:ndg:security" 
    10  xmlns:wsu="http://schemas.xmlsoap.org/ws/2002/07/utility" 
    11  targetNamespace="urn:ndg:security"> 
     9 xmlns:tns="urn:ndg:security:ca" 
     10 targetNamespace="urn:ndg:security:ca"> 
    1211 
    1312  <wsdl:types> 
    14     <xsd:schema> 
    15       <xsd:element name="signCertReq"> 
     13    <xsd:schema targetNamespace="urn:ndg:security:ca"> 
     14     
     15      <xsd:element name="issueCert"> 
    1616        <xsd:complexType> 
    1717          <xsd:sequence> 
     
    2020        </xsd:complexType> 
    2121      </xsd:element> 
    22       <xsd:element name="signCertReqResponse"> 
     22       
     23      <xsd:element name="issueCertResponse"> 
    2324        <xsd:complexType> 
    2425                  <xsd:sequence> 
    25                 <xsd:element name="x509Cert" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
     26                <xsd:element name="x509Cert" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    2627                  </xsd:sequence> 
    2728                </xsd:complexType> 
    2829      </xsd:element> 
     30     
     31      <xsd:element name="revokeCert"> 
     32        <xsd:complexType> 
     33          <xsd:sequence> 
     34            <xsd:element name="x509Cert" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     35          </xsd:sequence> 
     36        </xsd:complexType> 
     37      </xsd:element> 
     38       
     39      <xsd:element name="revokeCertResponse"> 
     40        <xsd:complexType/> 
     41      </xsd:element> 
     42     
     43      <xsd:element name="getCRL"> 
     44        <xsd:complexType/> 
     45      </xsd:element> 
     46       
     47      <xsd:element name="getCRLResponse"> 
     48        <xsd:complexType> 
     49          <xsd:sequence> 
     50            <xsd:element name="crl" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     51          </xsd:sequence> 
     52        </xsd:complexType> 
     53      </xsd:element> 
     54       
    2955    </xsd:schema> 
    3056  </wsdl:types> 
    3157 
    32   <wsdl:message name="signCertReq"> 
    33     <wsdl:part name="parameters" element="signCertReq"/> 
     58  <wsdl:message name="issueCertInputMsg"> 
     59    <wsdl:part name="parameters" element="tns:issueCert"/> 
    3460  </wsdl:message> 
    3561 
    36   <wsdl:message name="signCertReqResponse"> 
    37     <wsdl:part name="parameters" element="signCertReqResponse"/> 
     62  <wsdl:message name="issueCertOutputMsg"> 
     63    <wsdl:part name="parameters" element="tns:issueCertResponse"/> 
    3864  </wsdl:message> 
    3965 
    40   <wsdl:portType name="SimpleCA"> 
    41     <wsdl:operation name="signCertReq"> 
    42       <wsdl:input message="tns:signCertReqInputMsg"/> 
    43       <wsdl:output message="tns:signCertReqOutputMsg"/> 
     66  <wsdl:message name="revokeCertInputMsg"> 
     67    <wsdl:part name="parameters" element="tns:revokeCert"/> 
     68  </wsdl:message> 
     69 
     70  <wsdl:message name="revokeCertOutputMsg"> 
     71    <wsdl:part name="parameters" element="tns:revokeCertResponse"/> 
     72  </wsdl:message> 
     73 
     74  <wsdl:message name="getCRLInputMsg"> 
     75    <wsdl:part name="parameters" element="tns:getCRL"/> 
     76  </wsdl:message> 
     77 
     78  <wsdl:message name="getCRLOutputMsg"> 
     79    <wsdl:part name="parameters" element="tns:getCRLResponse"/> 
     80  </wsdl:message> 
     81 
     82  <wsdl:portType name="CertificateAuthority"> 
     83    <wsdl:operation name="issueCert"> 
     84      <wsdl:input message="tns:issueCertInputMsg"/> 
     85      <wsdl:output message="tns:issueCertOutputMsg"/>      
     86    </wsdl:operation> 
     87     
     88    <wsdl:operation name="revokeCert"> 
     89      <wsdl:input message="tns:revokeCertInputMsg"/> 
     90      <wsdl:output message="tns:revokeCertOutputMsg"/> 
     91    </wsdl:operation> 
     92     
     93    <wsdl:operation name="getCRL"> 
     94      <wsdl:input message="tns:getCRLInputMsg"/> 
     95      <wsdl:output message="tns:getCRLOutputMsg"/> 
    4496    </wsdl:operation> 
    4597  </wsdl:portType> 
    4698 
    47   <wsdl:binding name="SimpleCABinding" type="tns:SimpleCA"> 
     99  <wsdl:binding name="CertificateAuthorityBinding" type="tns:CertificateAuthority"> 
    48100    <soap:binding 
    49101     style="document" 
    50102     transport="http://schemas.xmlsoap.org/soap/http"/> 
    51     <wsdl:operation name="signCertReq"> 
    52       <soap:operation soapAction="signCertReq"/> 
     103    <wsdl:operation name="issueCert"> 
     104      <soap:operation soapAction="issueCert"/> 
     105      <wsdl:input> 
     106        <soap:body use="literal"/> 
     107      </wsdl:input> 
     108      <wsdl:output> 
     109        <soap:body use="literal"/> 
     110      </wsdl:output> 
     111    </wsdl:operation> 
     112     
     113    <wsdl:operation name="revokeCert"> 
     114      <soap:operation soapAction="revokeCert"/> 
     115      <wsdl:input> 
     116        <soap:body use="literal"/> 
     117      </wsdl:input> 
     118      <wsdl:output> 
     119        <soap:body use="literal"/> 
     120      </wsdl:output> 
     121    </wsdl:operation> 
     122     
     123    <wsdl:operation name="getCRL"> 
     124      <soap:operation soapAction="getCRL"/> 
    53125      <wsdl:input> 
    54126        <soap:body use="literal"/> 
     
    60132  </wsdl:binding> 
    61133 
    62   <wsdl:service name="SimpleCAService"> 
    63     <wsdl:documentation>SimpleCA web service</wsdl:documentation> 
    64     <wsdl:port name="SimpleCA" binding="tns:SimpleCABinding"> 
     134  <wsdl:service name="CertificateAuthorityService"> 
     135    <wsdl:documentation>NDG Certificate Authority web service</wsdl:documentation> 
     136    <wsdl:port name="CertificateAuthority" binding="tns:CertificateAuthorityBinding"> 
    65137      <soap:address location="http://localhost:5001"/> 
    66138    </wsdl:port> 
Note: See TracChangeset for help on using the changeset viewer.