Message-ID: <255404993.857.1425509803618.JavaMail.firstname.lastname@example.org> Subject: Exported From Confluence MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_Part_856_1437718891.1425509803617" ------=_Part_856_1437718891.1425509803617 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Content-Location: file:///C:/exported.html
Before adding WS-Security to your web services, you must make su= re to have:=20
This is quite easy. You need first to create a keystore with a key pair.= During that process you will be asked for passwords for protecting your ke= ystore and private key. Let's choose 'groovyws' for both of them. This can be done for example with= :=20 =20
Then you need to generate the Certificate Signing Request like this:= =20 =20
You need to get the server certificate from your CA using the newly gene= rated request. Let's assume you get back the file named ServerCertificate.p= em. You need to include that certificate into your keystore. Ususaly this w= on't be possible unless your keystore contains the certificate of your CA. = Let's add those two certificates:=20 =20
You are now ready to start your server:=20 =20
In the above example, the client authentication is not required. If you = turn the flag to true (or omit the line, it is true by default), the client= must trust the server, you therefore have to provide a keystore containing= the server certificate.=20 =20 =20
You may also setup more complex configurations where both the client &am= p; server need to trust each others ...