/
Security STS Client Config

Security STS Client Config

Owned by Shaun Morris
Jun 29, 2013

Description

The DDF Security STS Client Config bundle keeps track and exposes configurations and settings for the CXF STS Client. This client can be used by other services to create their own STS Client. Once a service is registered as a watcher of the configuration, it will be updated whenever the settings change for the sts client.

Configuration

Installation

This bundle is not installed by default and can be added by installing the security-sts-realm feature.

Settings

Settings can be found in the webconsole under Configuration -> Security STS Client.

Configuration NameDefault ValueAdditional Information
STS Endpoint Name{http://docs.oasis-open.org/ws-sx/ws-trust/200512/}STS_Port 
STS Service Name{http://docs.oasis-open.org/ws-sx/ws-trust/200512/}SecurityTokenService 
STS Addresshttps://server:8993/services/SecurityTokenServiceThe hostname of the remote server should match the certificate that the server is using.
Username Can be left blank if client is using credentials other than UsernameToken.
Password Can be left blank if client is using credentials other than UsernameToken.
Signature Username Must be set. Sets the username to use for the signature, example: client
Signature Propertiesetc/ws-security/client/signature.properties 
Encryption Username Must be set. Sets the username to use for encryption, example: tokenissuer
Encryption Propertiesetc/ws-security/client/encryption.properties 
STS Token Username Must be set. Sets the username associated with the STS Token, example: client
STS Propertiesetc/ws-security/client/signature.properties 
Claims<List of Claims> 

Implementation Details

Imported Services

Registered InterfaceAvailabilityMultiple
ddf.catalog.DdfConfigurationWatcherrequiredtrue
org.osgi.service.cm.ConfigurationAdminrequiredfalse

Exported Services

None