Table of Contents
- List of Figures
- List of Tables
- Title and Copyright Information
- Preface
- What's New in This Guide
-
Part I Introduction to Oracle Web Services
- 1 Overview of Oracle Web Services Security and Policy Management
-
2
Using Oracle Web Services Manager with Oracle WebLogic Server
- 2.1 Installing Oracle Web Services Manager with WebLogic Server
- 2.2 Deploying Policy Manager
- 2.3 OWSM Configuration with a Domain-Wide Administration Port
- 2.4 Cross-Component Wiring for Auto-Discovery of Policy Manager
- 2.5 About Verifying Service Table Entries and Agent Bindings
-
2.6
About Modifying the Default User
- 2.6.1 Configuring an Authentication Provider
- 2.6.2 Configuring the Credential Store Provider
- 2.6.3 Configuring the Policy Manager CSF Key for the Domain
- 2.6.4 Modifying the User's Group or Role
- 2.6.5 Determining that the User Has the Required Role
- 2.6.6 Examples of Using OPSS Scripts to Manage Application Roles
-
3
Determining Which Predefined Policies to Use for a Web Service
- 3.1 Security Policy Questionnaire for a Web Service
- 3.2 Summary of Predefined Security Policies for a Web Service
- 3.3 OWSM Policies Supported for Java EE Web Services and Clients
- 3.4 OWSM Policies Supported for RESTful Web Services and Clients
- 3.5 OWSM Policies Supported for Web Services and Clients That Use SOAP Over JMS Transport
- 3.6 OWSM Policies Supported for SOA Composite Services and Clients
- 3.7 OWSM Policies that Require You to Configure SSL
- 3.8 OWSM Policies Supported for Identity Context
- 3.9 OWSM Policies Supported for WS-SecureConversation
- 3.10 OWSM Policies Supported for JCA Adapters
- 3.11 OWSM Policies Supported for OES Integration
- 3.12 OWSM Policies Are Supported for PII
- 3.13 OWSM Policies Supported for Oracle Service Bus
-
Part II Attaching and Managing Policies
-
4
Attaching Policies to Manage and Secure Web Services
- 4.1 Overview of Policy Attachment
- 4.2 Understanding Attaching Policies to Web Services and Clients at Design Time
-
4.3
About Attaching Policies to Web Services and Clients Using Fusion Middleware Control
-
4.3.1
Attaching Policies Directly Using Fusion Middleware Control
- 4.3.1.1 Attaching Policies Directly to a Single Subject Using Fusion Middleware Control
-
4.3.1.2
Attaching Policies Directly to Web Service Clients Using Fusion Middleware Control
- 4.3.1.2.1 Attaching Policies to SOA References Using Fusion Middleware Control
- 4.3.1.2.2 Attaching Policies to Connection-Based Web Service Clients Using Fusion Middleware Control
- 4.3.1.2.3 Attaching Policies to Asynchronous Web Service Callback Clients Using Fusion Middleware Control
- 4.3.1.2.4 Attaching Policies to Java EE Web Service Clients Using Fusion Middleware Control
- 4.3.1.3 Enabling or Disabling Directly Attached Policies Using Fusion Middleware Control
- 4.3.1.4 Detaching Directly Attached Policies Using Fusion Middleware Control
-
4.3.2
About Attaching Policies Globally Using Fusion Middleware Control
- 4.3.2.1 Navigating to the WSM Policy Set Summary Page Using Fusion Middleware Control
- 4.3.2.2 Viewing the Configuration of a Policy Set Using Fusion Middleware Control
- 4.3.2.3 Creating a Policy Set Using Fusion Middleware Control
- 4.3.2.4 Cloning a Policy Set Using Fusion Middleware Control
- 4.3.2.5 Editing a Policy Set Using Fusion Middleware Control
- 4.3.2.6 Specifying Run-time Constraints in a Policy Set Using Fusion Middleware Control
- 4.3.2.7 Enabling and Disabling a Policy Set Using Fusion Middleware Control
- 4.3.2.8 Deleting Policy Sets Using Fusion Middleware Control
- 4.3.3 Viewing Policies Attached to a Web Service Using Fusion Middleware Control
- 4.3.4 Validating Policy Attachments
- 4.3.5 About Validating a Policy Set
-
4.3.1
Attaching Policies Directly Using Fusion Middleware Control
-
4.4
About Attaching Policies to Web Services and Clients Using WLST
- 4.4.1 Viewing Available Policies Using WLST
-
4.4.2
About Attaching Policies Directly to Java EE Web Services and Clients Using WLST
- 4.4.2.1 Viewing the Policies That Are Attached to a Java EE Web Service
- 4.4.2.2 Viewing the Policies That Are Attached to a Java EE Web Service Client
- 4.4.2.3 Attaching Policies Directly to a Java EE Web Service Using WLST
- 4.4.2.4 Attaching Policies Directly to Java EE Web Service Clients Using WLST
- 4.4.2.5 Detaching Directly Attached Policies from Java EE Web Service and Clients Using WLST
- 4.4.2.6 Enabling and Disabling Web Service Client Policies Using WLST
- 4.4.3 About Attaching Policies Directly to RESTful and Oracle Infrastructure Web Services and Clients Using WLST
-
4.4.4
About Attaching Policies Globally Using WLST
- 4.4.4.1 Viewing a List of Policy Sets
- 4.4.4.2 Displaying the Configuration of a Policy Set
- 4.4.4.3 Managing Sessions Using WLST
- 4.4.4.4 Creating a New Policy Set Using WLST
- 4.4.4.5 Cloning a Policy Set using WLST
- 4.4.4.6 Editing a Policy Set
- 4.4.4.7 Validating a Policy Set
- 4.4.4.8 Enabling and Disabling a Policy Set
- 4.4.4.9 Deleting Policy Sets Using WLST
- 4.4.4.10 Specifying Runtime Constraints in Policy Sets Using WLST
- 4.4.5 Viewing Policies Attached to a Web Service with WLST
- 4.4.6 Displaying the Effective Policy Set Using WLST
- 4.5 About Attaching Policies to Servlet Applications
-
4.6
About Securing the URI patterns for Resources in RESTful Web Services
-
4.6.1
Example Scenario: Creating Policies to Secure URI patterns
- 4.6.1.1 Creating a Policy Set to Secure the Application
- 4.6.1.2 Creating a Policy Set to Secure the Module in an Application
- 4.6.1.3 Creating Policy Sets to Secure Multiple Modules with Different Policies in the Application
- 4.6.1.4 Creating a Policy Set to Secure the Paths for a Module in the Service
- 4.6.1.5 Creating Policy Sets to Grant Anonymous Access for a Specific Path in a Secured Application
- 4.6.1.6 Creating a Policy Set to Secure the HTTP Method in the Application
-
4.6.1
Example Scenario: Creating Policies to Secure URI patterns
- 4.7 Run-time Constraints in Policy Sets
- 4.8 About Defining the Type and Scope of Resources for Globally Attached Policies
- 4.9 Migrating Direct Policy Attachments to Global Policy Attachments
- 4.10 Disabling a Globally Attached Policy
- 4.11 Specifying the Priority of a Policy Attachment
- 4.12 Managing Endpoint Configuration Properties Using Fusion Middleware Control
- 4.13 Determining the Secure Status of an Endpoint
- 4.14 How the Effective Set of Policies is Calculated
- 4.15 Determining the Source of Policy Attachments
-
5
Overriding Policy Configuration Properties
- 5.1 Overview of Policy Configuration Overrides
- 5.2 Scope of Predefined Configuration Properties
-
5.3
About Overriding Client Policy Configuration Properties at Design Time
- 5.3.1 Java EE Web Services
- 5.3.2 RESTful Web Services
-
5.3.3
Understanding Oracle Infrastructure Web Services
- 5.3.3.1 Client Policy Configuration Properties That Can Be Overridden at Design Time
- 5.3.3.2 Example for Overriding the Client Policy Configuration Properties for Keystore, Username, and Password Using RequestContext
- 5.3.3.3 Example for Overriding the RESTful Web Service Client Policy Configuration Properties for the Username and Password
-
5.4
About Overriding Policy Configuration Properties Using Fusion Middleware Control
- 5.4.1 Overriding Configuration Properties at the Domain Level (Defining the Default Value)
- 5.4.2 Overriding Configuration Properties for Directly Attached Service Policies Using Fusion Middleware Control
- 5.4.3 Overriding Configuration Properties at the Web Service Client Application Level Using Fusion Middleware Control
- 5.4.4 Overriding Configuration Properties for Globally Attached Policies Using Fusion Middleware Control
- 5.5 About Overriding Policy Configuration Properties Using WLST
- 5.6 About Configuring User-Defined Properties for Web Service and Client Policies Using Fusion Middleware Control
-
6
Managing Web Service Policies with Fusion Middleware Control
- 6.1 Overview of Web Services Policy Management
-
6.2
Managing Web Service Policies
- 6.2.1 Navigating to the WSM Policies Page
- 6.2.2 Searching for Policies in the WSM Policies Page
- 6.2.3 Viewing the Details of a Web Service Policy
- 6.2.4 Creating and Editing Web Service Policies
- 6.2.5 Using Local Optimization with OWSM Policies (SOA Composites)
- 6.2.6 Generating Client Policies from a WSDL
- 6.2.7 Adding Assertions to a Policy
- 6.2.8 Adding an OR Group to a Policy
- 6.2.9 Importing Web Service Policies
- 6.2.10 Exporting Web Service Policies
- 6.2.11 Versioning Web Service Policies
- 6.2.12 Deleting a Web Service Policy
- 6.3 Validating Web Service Policies
-
6.4
Managing Policy Assertion Templates
- 6.4.1 About Navigating to the Assertion Templates Page
- 6.4.2 Understanding Search Options on the Assertion Templates Page
- 6.4.3 Viewing the Details of an Assertion Template
- 6.4.4 Naming Conventions for Assertion Templates
- 6.4.5 Cloning an Assertion Template
- 6.4.6 Editing an Assertion Template
- 6.4.7 Editing the Configuration Properties in an Assertion Template
- 6.4.8 Exporting an Assertion Template
- 6.4.9 Importing an Assertion Template
- 6.4.10 Deleting an Assertion Template
- 6.5 Managing Policies and Assertions
- 6.6 Analyzing Policy Usage
- 6.7 About Advertising Policy Assertions
- 6.8 About Advertising WS-Policy and WS-SecurityPolicy Versions
-
4
Attaching Policies to Manage and Secure Web Services
-
Part III Securing Web Services
-
7
Configuring Message Protection for Web Services
- 7.1 Overview of Message Protection Configuration for Web Services
-
7.2
Overview of Configuring Keystores for Message Protection
-
7.2.1
Understanding OPSS Keystore Service for Message Protection
- 7.2.1.1 Configuring Message Protection Using the OPSS Keystore Service
- 7.2.1.2 Migrating a JKS Keystore Into the KSS Keystore
- 7.2.1.3 Importing Certificates Into the KSS Keystore
- 7.2.1.4 Overriding keystore.sig.csf.key and keystore.enc.csf.key Attributes
- 7.2.1.5 Renewing or Regenerating the Expiring Certificates or Keys
- 7.2.2 Understanding Java Keystore for Message Protection
- 7.2.3 Adding Keys and User Credentials to Configure the Credential Store
-
7.2.1
Understanding OPSS Keystore Service for Message Protection
-
7.3
About Creating an Application-level Credential Map
- 7.3.1 How CSF Keys Are Retrieved from an Application-level Credential Map
- 7.3.2 About Permissions to Access an Application-level Credential Map
- 7.3.3 Policies that Can Be Used to Access an Application-level CSF Map
- 7.4 Understanding Service Identity Certificate Extensions
- 7.5 Caching the Nonce with Oracle Coherence
- 7.6 About Configuring Partial Encryption with Fusion Middleware Control
-
8
Protecting Personally Identifiable Information
-
8.1
Main Steps in Protecting PII Information
- 8.1.1 Approach to Follow to Determine What PII Data to Protect
- 8.1.2 Composing the XPath Expressions to Protect the PII Data
- 8.1.3 Configuring the PII Encryption Key
- 8.1.4 Attaching the pii_security_policy Policy
- 8.1.5 Attaching the pii_security_policy to SOA Composite
- 8.1.6 Attaching the pii_security_policy to Oracle Service Bus
- 8.1.7 Attaching the pii_security_policy to JCA Binding
- 8.2 Overriding the pii_security_policy Attributes Using WLST
- 8.3 Decrypting PII Using API
-
8.1
Main Steps in Protecting PII Information
-
9
Configuring Transport-Level Security (SSL)
- 9.1 About Configuring Keystores for SSL
- 9.2 Configuring One-Way SSL on WebLogic Server
- 9.3 Configuring Two-Way SSL on WebLogic Server
- 9.4 Configuring One-Way SSL for a Web Service Client
- 9.5 Configuring Two-Way SSL for a Web Service Client
- 9.6 Understanding SSL Configuration on Oracle HTTP Server
-
10
Configuring Authorization Using Oracle Web Services Manager
- 10.1 Overview of Authorization
- 10.2 Determining Which Resources to Protect
- 10.3 Determining Authorization Permissions
- 10.4 Determining the OPSS Resource Name
-
10.5
About Configuring Fine-Grained Authorization Using Oracle Entitlements Server
- 10.5.1 Prerequisites for Configuring OES Integration
- 10.5.2 Understanding Attributes for Obligations
- 10.5.3 About Configuring OES Policies For Fine-Grained Authorization
- 10.5.4 About Configuring OES Policies For Coarse-Grained Authorization
- 10.5.5 About Configuring OES Policy For Masking
- 10.5.6 Understanding How to Attach OWSM OES Policy
- 10.6 Configuring the Oracle HTTP Server to Specify the Request Origin
-
10.7
Using OAuth 2.0 with Oracle Web Services Manager
- 10.7.1 About OAuth2 with Oracle Web Services Manager
- 10.7.2 About OWSM OAuth2 Client API
- 10.7.3 Configuring OAuth2 for Use With Oracle Web Services Manager Policies
- 10.7.4 Enabling User Assertion by Username/Password in OAuth Policy
- 10.7.5 About OAuth Based Anonymous User Authentication
- 10.7.6 About Multitenant Support for OAuth Token Validation
- 10.7.7 About Proxy Configuration for Outbound OAuth 2.0 on the Client Application
- 10.7.8 About Support for OAuth 2.0 Tokens with Application Defined Scopes
- 10.8 Understanding OWSM integration with 3rd Party Servers
-
11
Configuring Authentication Using Oracle Web Services Manager
- 11.1 Overview of Authentication Configuration
- 11.2 Supported Authentication Providers in WebLogic Server
- 11.3 About Configuring Digest Authentication
-
11.4
About SAML Configuration
- 11.4.1 Overview of Flow of SAML Token Validation
- 11.4.2 Configuring SAML Web Service Client at Design Time
- 11.4.3 Including User Attributes in the Assertion
- 11.4.4 Including User Roles in the Assertion
- 11.4.5 Understanding the Configuration of Oracle Platform Security Services (OPSS) for SAML Policies
- 11.4.6 Adding an Additional SAML Assertion Issuer Name
- 11.4.7 About SAML Web Service Client Configuration for Identity Switching
- 11.4.8 Understanding Trusted Issuers and Trusted Distinguished Names List for SAML Signing Certificates
- 11.4.9 Understanding How to Use Anonymous Users with SAML Policies
- 11.5 About Propagating Identity Context with OWSM
-
11.6
Understanding Kerberos Token Configuration
- 11.6.1 About MIT Kerberos
- 11.6.2 About Using Microsoft Active Directory with Key Distribution Center
- 11.6.3 Setting the Service Principal Name In the Web Service Client
- 11.6.4 Configuring the Web Service to Use the Correct KDC
- 11.6.5 About Using the Correct Keytab File in Enterprise Manager
- 11.6.6 Authenticating the User Corresponding to the Service Principal
- 11.6.7 Creating a Ticket Cache for the Web Service Client
- 11.6.8 Kerberos Configuration Over SSL
- 11.6.9 Kerberos Configuration with SPNEGO Negotiation
-
11.6.10
About Configuration of Credential Delegation
- 11.6.10.1 Configuring Credential Delegation in Kerberos
- 11.6.10.2 Configuring Delegation Permission to OWSM
- 11.6.10.3 Enabling Credential Delegation in the Client Policy and the Service Policy
- 11.6.10.4 Configuring Credential Delegation for a Service in Active Directory
- 11.6.10.5 Configuring Credential Delegation With An Example
-
11.7
About WS-Trust Configuration
- 11.7.1 Overview of Web Services WS-Trust
- 11.7.2 Supported STS Servers
- 11.7.3 Understanding Token Lifetime and Token Caching
- 11.7.4 Setting Up Automatic Policy Configuration for STS
-
11.7.5
About Configuring Web Services Federation
- 11.7.5.1 Configuring a Web Service for Web Services Federation
-
11.7.5.2
About Configuring a Web Client for Web Services Federation
- 11.7.5.2.1 Configuring the Web Client When Issuer Is in the Service WSDL and Is Not in the RP-STS WSDL
- 11.7.5.2.2 Configuring the Web Client When Issuer Is Not in the Service WSDL and Is Not in the RP-STS WSDL
- 11.7.5.2.3 Configuring the Web Client When Issuer Is in the Service WSDL and Is in the RP-STS WSDL
- 11.7.5.2.4 Configuring the Web Client When Issuer Is Not in the Service WSDL and Is in the RP-STS WSDL
- 11.7.5.3 Configuring an STS for Web Services Federation
- 11.7.6 Overview of SAML Holder of Key and SAML Bearer as Issued Tokens
- 11.7.7 Understanding SAML Sender Vouches as Issued Tokens
- 11.7.8 Overview of On Behalf Of Use Cases
- 11.7.9 Programmatically Overriding Policy Configuration for WS-Trust Client Policies
- 11.7.10 Overview of JWK Document Trust Configuration
- 11.7.11 About IDCS Discovery Service
- 11.7.12 About Token Audience Configuration
- 12 Configuring Secure Conversation Using Oracle Web Services Manager
-
13
Integrating Hardware with Oracle Web Services Manager
- 13.1 Using Hardware Security Modules With OWSM
-
13.2
About Configuring OWSM for Oracle SPARC T5 and SPARC T4 Cryptographic Acceleration
- 13.2.1 Terms You Need to Understand
- 13.2.2 Overview of Oracle SPARC T5 and SPARC T4 Hardware Assisted Cryptographic Acceleration
- 13.2.3 Configuring Transport-Level Security for Cryptographic Acceleration
- 13.2.4 Configuring Message-level Security for Cryptographic Acceleration
- 13.2.5 Additional Reading for Cryptographic Acceleration
-
7
Configuring Message Protection for Web Services
-
Part IV Managing and Troubleshooting Oracle Web Services Manager
-
14
Managing Oracle Web Services Manager Domain Configuration
- 14.1 Overview of OWSM Domain Configuration
- 14.2 Navigating to the WSM Domain Configuration Page
- 14.3 Viewing the General OWSM Domain Configuration Using Fusion Middleware Control
-
14.4
Configuring Domain-Level Authentication Using Fusion Middleware Control
- 14.4.1 SAML Trusted Issuers and DN Lists Using Fusion Middleware Control
- 14.4.2 Configuring JWT Trusted Issuers and DN Lists Using Fusion Middleware Control
- 14.4.3 Configuring Token Attribute Rules for Trusted Issuers Using Fusion Middleware Control
- 14.4.4 Configuring the Lifetime for the Issued Token Using Fusion Middleware Control
- 14.4.5 Configuring the SAML and SAML2 Login Modules Using Fusion Middleware Control
- 14.4.6 Configuring the Kerberos Login Module
- 14.4.7 Configuring Subject Properties Using Fusion Middleware Control
- 14.4.8 Configuring the X509 Login Module Using Fusion Middleware Control
- 14.4.9 Creating Custom Login Modules
-
14.5
Domain-Level Message Security Configuration Using Fusion Middleware Control
- 14.5.1 OWSM Keystore Configuration Using Fusion Middleware Control
- 14.5.2 Configuring Security Policy Enforcement Using Fusion Middleware Control
- 14.5.3 Configuring Identity Extension Properties Using Fusion Middleware Control
- 14.5.4 Secure Conversation Configuration for the Domain Using Fusion Middleware Control
-
14.6
OWSM Policy Access Configuration Using Fusion Middleware Control
- 14.6.1 Understanding Configuring the Policy Manager Connection Using Fusion Middleware Control
- 14.6.2 About Refreshing Configuration Cache in OWSM Manually by using Fusion Middleware Control
- 14.6.3 Configuring SSL for the Policy Manager Connection Using Fusion Middleware Control
- 14.6.4 High Availability Configuration and Cache Management Using Fusion Middleware Control
- 14.7 About Managing OWSM Domain Configuration Properties Using WLST
-
14.8
Configuring Domain-Level Authentication Using WLST
- 14.8.1 Configuring SAML and JWT Trusted Issuers, DN Lists, and Token Attribute Rules Using WLST
- 14.8.2 Deleting a Token Issuer Trust Document Using WLST
- 14.8.3 Configuring the Lifetime for the Issued Token Using WLST
- 14.8.4 Configuring Subject Properties Using WLST
- 14.8.5 Configuring the SAML and SAML2 Login Modules Using WLST
- 14.8.6 Configuring the Kerberos Login Module Using WLST
- 14.8.7 Configuring the X509 Login Module Using WLST
- 14.8.8 Configuring Custom Login Modules Using WLST
- 14.9 About Configuring Domain-Level Message Security Using WLST
- 14.10 About Configuring Policy Access Using WLST
-
15
Managing the Oracle Web Services Manager Repository
- 15.1 Overview of OWSM Repository
- 15.2 Registering an OWSM Repository
- 15.3 Understanding the Different Mechanisms for Importing and Exporting Policies
- 15.4 About Importing and Exporting Documents in the Repository Using WLST
- 15.5 Exporting Policies from the OWSM Repository for Use in JDeveloper
- 15.6 About Patching Policies in the Repository
- 15.7 Creating Back Up and Restoring the OWSM Repository
- 15.8 Upgrading the OWSM Repository
- 15.9 Rebuilding the OWSM Repository
- 15.10 Configuring Multiple Domains for a Single OWSM Repository Instance
-
16
Diagnosing Problems with Oracle Web Services Manager
- 16.1 Diagnosing Policy Manager Problems Using the OWSM Policy Manager Page
-
16.2
Overview of Common Problems with Oracle Web Services Manager
- 16.2.1 Overview of Common Policy Manager Connection Problems
- 16.2.2 Overview of Key Store or Credential Store Errors After an Application Invokes a Web Service
- 16.2.3 Overview of Trust Certificate Error After Application Invokes a Web Service
- 16.2.4 About Troubleshooting SAML Assertion Errors During Identity Propagation
- 16.2.5 Overview of Policy Access Problems After an Application Invokes a Web Service
- 16.2.6 Overview of Problems Accessing Users in the Credential Store
- 16.2.7 Overview of Common User Authorization Problems After an Application Invokes a Web Service
- 16.2.8 Overview of Timestamp Errors After an Application Invokes a Web Service
- 16.2.9 Overview of Multiple Authentication Security Policy Errors After an Application Invokes a Web Service
- 16.3 Overview of Policy Attachment Issues Using WLST
-
16.4
About Diagnosing Problems With a Domain Configuration Using WLST
- 16.4.1 Understanding the Use of checkWSMStatus Command to Identify Domain Configuration Issues
- 16.4.2 Viewing checkWSMStatus Output Showing Status
- 16.4.3 Viewing checkWSMStatus Output Showing Credential Store Failure
- 16.4.4 Viewing checkWSMStatus Output With OAuth2 Global Policy Set Configured
- 16.4.5 Viewing checkWSMStatus Output With OAuth2 Global Policy Set Not Configured
- 16.5 Common Oracle Web Services Manager Exceptions for WS-Trust Use Cases
- 16.6 Managing third party server integration with OWSM
-
14
Managing Oracle Web Services Manager Domain Configuration
-
Part V Oracle Web Services Manager Predefined Policies and Assertions Templates
-
17
Oracle Web Services Manager Predefined Policies
- 17.1 Addressing Policies
- 17.2 Atomic Transaction Policies
- 17.3 Configuration Policies
- 17.4 Management Policies
- 17.5 MTOM Policies
- 17.6 Reliable Messaging Policies
- 17.7 Security Policies-Authentication Only
- 17.8 Security Policies-Authorization Only
- 17.9 Security Policies-Message Protection Only
- 17.10 Security Policies-Messages Protection and Authentication
- 17.11 Security Policies-Sha256 Only
- 17.12 Security Policies—Oracle Entitlements Server
- 17.13 SOAP Over JMS Transport Policies
- 17.14 oracle/wsaddr_policy
- 17.15 oracle/no_addressing_policy
- 17.16 oracle/atomic_transaction_policy
- 17.17 oracle/no_atomic_transaction_policy
- 17.18 oracle/async_web_service_policy
- 17.19 oracle/cache_binary_content_policy
- 17.20 oracle/fast_infoset_client_policy
- 17.21 oracle/fast_infoset_service_policy
- 17.22 oracle/max_request_size_policy
- 17.23 oracle/mex_request_processing_service_policy
- 17.24 oracle/mtom_encode_fault_service_policy
- 17.25 oracle/no_async_web_service_policy
- 17.26 oracle/no_cache_binary_content_policy
- 17.27 oracle/no_fast_infoset_client_policy
- 17.28 oracle/no_fast_infoset_service_policy
- 17.29 oracle/no_max_request_size_policy
- 17.30 oracle/no_mex_request_processing_service_policy
- 17.31 oracle/no_mtom_encode_fault_service_policy
- 17.32 oracle/no_persistence_policy
- 17.33 oracle/no_pox_http_binding_service_policy
- 17.34 oracle/no_request_processing_service_policy
- 17.35 oracle/no_schema_validation_policy
- 17.36 oracle/no_soap_request_processing_service_policy
- 17.37 oracle/no_test_page_processing_service_policy
- 17.38 oracle/no_ws_logging_level_policy
- 17.39 oracle/no_wsdl_request_processing_service_policy
- 17.40 oracle/persistence_policy
- 17.41 oracle/pox_http_binding_service_policy
- 17.42 oracle/request_processing_service_policy
- 17.43 oracle/schema_validation_policy
- 17.44 oracle/soap_request_processing_service_policy
- 17.45 oracle/test_page_processing_policy
- 17.46 oracle/ws_logging_level_policy
- 17.47 oracle/wsdl_request_processing_service_policy
- 17.48 oracle/log_policy
- 17.49 oracle/no_mtom_policy
- 17.50 oracle/wsmtom_policy
- 17.51 oracle/no_reliable_messaging_policy
- 17.52 oracle/no_wsrm_policy
- 17.53 oracle/reliable_messaging_policy
- 17.54 oracle/wsrm10_policy
- 17.55 oracle/wsrm11_policy
- 17.56 oracle/http_basic_auth_over_ssl_client_policy
- 17.57 oracle/http_basic_auth_over_ssl_service_policy
- 17.58 oracle/http_mutual_auth_over_ssl_client_policy
- 17.59 oracle/http_mutual_auth_over_ssl_service_policy
- 17.60 oracle/http_oam_token_service_policy
- 17.61 oracle/http_saml20_token_bearer_client_policy
- 17.62 oracle/http_saml20_token_bearer_service_policy
- 17.63 oracle/http_saml20_token_bearer_over_ssl_client_policy
- 17.64 oracle/http_saml20_bearer_token_over_ssl_service_policy
- 17.65 oracle/multi_token_rest_service_policy
- 17.66 oracle/multi_token_over_ssl_rest_service_policy
- 17.67 oracle/multi_token_sso_over_ssl_rest_service_policy
- 17.68 oracle/multi_token_sso_rest_service_policy
- 17.69 oracle/no_authentication_client_policy
- 17.70 oracle/no_authentication_service_policy
- 17.71 oracle/wss_http_token_client_policy
- 17.72 oracle/wss_http_token_service_policy
- 17.73 oracle/wss_username_token_client_policy
- 17.74 oracle/wss_username_token_service_policy
- 17.75 oracle/wss10_saml_token_client_policy
- 17.76 oracle/wss10_saml_token_service_policy
- 17.77 oracle/wss10_saml20_token_client_policy
- 17.78 oracle/wss10_saml20_token_service_policy
- 17.79 oracle/wss11_kerberos_token_client_policy
- 17.80 oracle/wss11_kerberos_token_service_policy
- 17.81 oracle/http_oauth2_token_client_policy
- 17.82 oracle/ http_oauth2_token_with_resource_owner_creds_client_policy
- 17.83 oracle/http_oauth2_token_with_resource_owner_creds_over_ssl_client_policy
- 17.84 oracle/http_jwt_token_service_policy
- 17.85 oracle/http_oauth2_token_identity_switch_over_ssl_client_policy
- 17.86 oracle/http_jwt_token_over_ssl_service_policy
- 17.87 oracle/http_oauth2_token_opc_oauth2_client_policy
- 17.88 oracle/http_oauth2_token_over_ssl_client_policy
- 17.89 oracle/http_jwt_token_over_ssl_service_policy
- 17.90 oracle/oauth2_config_client_policy
- 17.91 oracle/http_jwt_token_client_policy
- 17.92 oracle/http_jwt_token_over_ssl_client_policy
- 17.93 oracle/http_oauth2_token_identity_switch_opc_oauth2_over_ssl_client_policy
- 17.94 oracle/http_oauth2_token_opc_oauth2_over_ssl_client_policy
- 17.95 oracle/http_jwt_token_identity_switch_client_policy
- 17.96 oracle/binding_authorization_denyall_policy
- 17.97 oracle/binding_authorization_permitall_policy
- 17.98 oracle/binding_permission_authorization_policy
- 17.99 oracle/component_authorization_denyall_policy
- 17.100 oracle/component_authorization_permitall_policy
- 17.101 oracle/component_permission_authorization_policy
- 17.102 oracle/no_authorization_component_policy
- 17.103 oracle/no_authorization_service_policy
- 17.104 oracle/whitelist_authorization_policy
- 17.105 oracle/no_messageprotection_client_policy
- 17.106 oracle/no_messageprotection_service_policy
- 17.107 oracle/wss10_message_protection_client_policy
- 17.108 oracle/wss10_message_protection_service_policy
- 17.109 oracle/wss11_message_protection_client_policy
- 17.110 oracle/wss11_message_protection_service_policy
- 17.111 wss11_username_token_derivedkey_with_message_protection_service
- 17.112 oracle/wss11_username_token_with_message_protection_client_policy
- 17.113 wss11_username_token_derivedkey_message_protection_encryption_client
- 17.114 oracle/pii_security_policy
- 17.115 oracle/sts_trust_config_client_policy
- 17.116 oracle/sts_trust_config_service_policy
- 17.117 oracle/wss_saml_bearer_or_username_token_service_policy
- 17.118 oracle/wss_saml_or_username_token_service_policy
- 17.119 oracle/wss_saml_or_username_token_over_ssl_service_policy
- 17.120 oracle/wss_saml_token_bearer_client_policy
- 17.121 oracle/wss_saml_token_bearer_over_ssl_client_policy
- 17.122 oracle/wss_saml_token_bearer_over_ssl_service_policy
- 17.123 oracle/wss_http_token_over_ssl_client_policy
- 17.124 oracle/wss_http_token_over_ssl_service_policy
- 17.125 oracle/wss_saml_token_over_ssl_client_policy
- 17.126 oracle/wss_saml_token_over_ssl_service_policy
- 17.127 oracle/wss_saml20_token_bearer_over_ssl_client_policy
- 17.128 oracle/wss_saml20_token_bearer_over_ssl_service_policy
- 17.129 oracle/wss_saml20_token_over_ssl_client_policy
- 17.130 oracle/wss_saml20_token_over_ssl_service_policy
- 17.131 oracle/wss_sts_issued_saml_bearer_token_over_ssl_client_policy
- 17.132 oracle/wss_sts_issued_saml_bearer_token_over_ssl_service_policy
- 17.133 oracle/wss_username_token_over_ssl_client_policy
- 17.134 oracle/wss_username_token_over_ssl_service_policy
- 17.135 oracle/wss_username_token_over_ssl_wssc_client_policy
- 17.136 oracle/wss_username_token_over_ssl_wssc_service_policy
- 17.137 oracle/wss_username_token_over_ssl_notimestamp_client_policy
- 17.138 oracle/wss_username_token_over_ssl_notimestamp_service_policy
- 17.139 oracle/wss10_saml_hok_token_with_message_protection_client_policy
- 17.140 oracle/wss10_saml_hok_token_with_message_protection_service_policy
- 17.141 oracle/wss10_saml_token_with_message_integrity_client_policy
- 17.142 oracle/wss10_saml_token_with_message_integrity_service_policy
- 17.143 oracle/wss10_saml_token_with_message_protection_client_policy
- 17.144 oracle/wss10_saml_token_with_message_protection_service_policy
- 17.145 oracle/wss10_saml_token_with_message_protection_ski_basic256_client_policy
- 17.146 oracle/wss10_saml_token_with_message_protection_ski_basic256_service_policy
- 17.147 oracle/wss10_saml20_token_with_message_protection_client_policy
- 17.148 oracle/wss10_saml20_token_with_message_protection_service_policy
- 17.149 oracle/wss10_username_id_propagation_with_msg_protection_client_policy
- 17.150 oracle/wss10_username_id_propagation_with_msg_protection_service_policy
- 17.151 oracle/wss10_username_token_with_message_protection_client_policy
- 17.152 oracle/wss10_username_token_with_message_protection_service_policy
- 17.153 oracle/wss10_username_token_with_message_protection_ski_basic256_client_policy
- 17.154 oracle/wss10_username_token_with_message_protection_ski_basic256_service_policy
- 17.155 oracle/wss10_x509_token_with_message_protection_client_policy
- 17.156 oracle/wss10_x509_token_with_message_protection_service_policy
- 17.157 oracle/wss11_kerberos_token_with_message_protection_client_policy
- 17.158 oracle/wss11_kerberos_token_with_message_protection_service_policy
- 17.159 oracle/wss11_kerberos_token_with_message_protection_basic128_client_policy
- 17.160 oracle/wss11_kerberos_token_with_message_protection_basic128_service_policy
- 17.161 oracle/wss11_saml_or_username_token_with_message_protection_service_policy
- 17.162 oracle/wss11_saml_or_username_token_with_message_protection_sha256_service_policy
- 17.163 oracle/wss11_saml_token_identity_switch_with_message_protection_client_policy
- 17.164 oracle/wss11_saml_token_identity_switch_with_message_protection_sha256_client_policy
- 17.165 oracle/wss11_saml_token_with_message_protection_client_policy
- 17.166 oracle/wss11_saml_token_with_message_protection_service_policy
- 17.167 oracle/wss11_saml_token_with_message_protection_sha256_client_policy
- 17.168 oracle/wss11_saml_token_with_message_protection_sha256_service_policy
- 17.169 oracle/wss11_saml_token_with_message_protection_wssc_client_policy
- 17.170 oracle/wss11_saml_token_with_message_protection_wssc_service_policy
- 17.171 oracle/wss11_saml_token_with_message_protection_wssc_reauthn_client_policy
- 17.172 oracle/wss11_saml_token_with_message_protection_wssc_reauthn_service_policy
- 17.173 oracle/wss11_saml20_token_with_message_protection_client_policy
- 17.174 oracle/wss11_saml20_token_with_message_protection_service_policy
- 17.175 oracle/wss11_sts_issued_saml_hok_with_message_protection_client_policy
- 17.176 oracle/wss11_sts_issued_saml_hok_with_message_protection_service_policy
- 17.177 oracle/wss11_sts_issued_saml_hok_with_message_protection_client_policy
- 17.178 oracle/wss11_sts_issued_saml_hok_with_message_protection_service_policy
- 17.179 oracle/wss11_sts_issued_saml_with_message_protection_client_policy
- 17.180 oracle/wss11_username_token_with_message_protection_client_policy
- 17.181 oracle/wss11_username_token_with_message_protection_service_policy
- 17.182 oracle/wss11_username_token_with_message_protection_sha256_client_policy
- 17.183 oracle/wss11_username_token_with_message_protection_sha256_service_policy
- 17.184 oracle/wss11_username_token_with_message_protection_wssc_client_policy
- 17.185 oracle/wss11_username_token_with_message_protection_wssc_service_policy
- 17.186 oracle/wss11_x509_token_with_message_protection_client_policy
- 17.187 oracle/wss11_x509_token_with_message_protection_service_policy
- 17.188 oracle/wss11_x509_token_with_message_protection_wssc_client_policy
- 17.189 oracle/wss11_x509_token_with_message_protection_wssc_service_policy
- 17.190 oracle/wss_saml_bearer_or_username_token_sha256_service_policy
- 17.191 oracle/wss_saml_token_bearer_identity_switch_client_policy
- 17.192 oracle/wss_saml_token_bearer_identity_switch_sha256_client_policy
- 17.193 oracle/wss_saml_token_bearer_over_ssl_sha256_client_policy
- 17.194 oracle/wss_saml_token_bearer_over_ssl_sha256_service_policy
- 17.195 oracle/wss_saml_token_bearer_service_policy
- 17.196 oracle/wss_saml_token_bearer_sha256_client_policy
- 17.197 oracle/wss_saml_token_bearer_sha256_service_policy
- 17.198 oracle/binding_oes_authorization_policy
- 17.199 oracle/binding_oes_masking_policy
- 17.200 oracle/component_oes_authorization_policy
- 17.201 oracle/jms_transport_client_policy
- 17.202 oracle/jms_transport_service_policy
- 17.203 oracle/no_jms_transport_client_policy
- 17.204 oracle/no_jms_transport_service_policy
- 17.205 oracle/http_oauth2_token_over_ssl_salesforce_jwt_client_policy
- 17.206 oracle/multi_token_rest_access_service_policy
- 17.207 oracle/multi_token_rest_access_over_ssl_service_policy
- 17.208 oracle/http_anonymous_rest_service_policy
- 17.209 oracle/http_anonymous_rest_over_ssl_service_policy
- 17.210 oracle/http_oauth2_token_over_ssl_google_jwt_client_policy
- 17.211 oracle/wss_saml20_token_bearer_over_ssl_notimestamp_client_policy
- 17.212 oracle/wss_saml20_token_bearer_over_ssl_notimestamp_service_policy
- 17.213 oracle/http_oauth2_token_idcs_client_policy
- 17.214 oracle/http_oauth2_token_over_ssl_idcs_client_policy
- 17.215 oracle/http_oauth2_token_identity_switch_over_ssl_idcs_client_policy
-
18
Oracle Web Services Manager Predefined Assertion Templates
- 18.1 Authentication Only Assertion Templates
- 18.2 Message-Protection Only Assertion Templates
- 18.3 Message Protection and Authentication Assertion Templates
- 18.4 Oracle Entitlements Server (OES) Integration Templates
- 18.5 PII Assertion Templates
- 18.6 WS-Trust Assertion Templates
- 18.7 Authorization Assertion Templates
- 18.8 Management Assertion Templates
- 18.9 oracle/http_oam_token_service_template
- 18.10 oracle/http_saml20_token_bearer_client_template
- 18.11 oracle/http_saml20_token_bearer_service_template
- 18.12 oracle/http_spnego_token_client_template
- 18.13 oracle/http_spnego_token_service_template
- 18.14 oracle/wss_http_token_client_template
- 18.15 oracle/wss_http_token_service_template
- 18.16 oracle/wss_username_token_client_template
- 18.17 oracle/wss_username_token_service_template
- 18.18 oracle/wss10_saml_token_client_template
- 18.19 oracle/wss10_saml_token_service_template
- 18.20 oracle/wss10_saml20_token_client_template
- 18.21 oracle/wss10_saml20_token_service_template
- 18.22 oracle/wss11_kerberos_token_client_template
- 18.23 oracle/wss11_kerberos_token_service_template
- 18.24 oracle/http_oauth2_token_client_template
- 18.25 oracle/http_jwt_token_service_template
- 18.26 oracle/http_oauth2_token_over_ssl_client_template
- 18.27 oracle/http_mutual_auth_over_ssl_client_template
- 18.28 oracle/http_mutual_auth_over_ssl_service_template
- 18.29 oracle/http_jwt_token_over_ssl_service_template
- 18.30 oracle/oauth2_config_client_template
- 18.31 oracle/http_jwt_token_client_template
- 18.32 oracle/http_jwt_token_over_ssl_client_template
- 18.33 oracle/wss10_message_protection_client_template
- 18.34 oracle/wss10_message_protection_service_template
- 18.35 oracle/wss11_message_protection_client_template
- 18.36 oracle/wss11_message_protection_service_template
- 18.37 wss11_username_token_derivedkey_message_protection_signature_client
- 18.38 wss11_username_token_derivedkey_message_protection_encryption_client_template
- 18.39 oracle/wss_http_token_over_ssl_client_template
- 18.40 oracle/wss_http_token_over_ssl_service_template
- 18.41 oracle/wss_saml_token_bearer_client_template
- 18.42 oracle/wss_saml_token_bearer_service_template
- 18.43 oracle/wss_saml_token_bearer_over_ssl_client_template
- 18.44 oracle/wss_saml_token_bearer_over_ssl_service_template
- 18.45 oracle/wss_saml20_token_bearer_over_ssl_client_template
- 18.46 oracle/wss_saml20_token_bearer_over_ssl_service_template
- 18.47 oracle/wss_saml_token_over_ssl_client_template
- 18.48 oracle/wss_saml_token_over_ssl_service_template
- 18.49 oracle/wss_saml20_token_over_ssl_client_template
- 18.50 oracle/wss_saml20_token_over_ssl_service_template
- 18.51 oracle/wss_username_token_over_ssl_client_template
- 18.52 oracle/wss_username_token_over_ssl_service_template
- 18.53 oracle/wss10_saml_hok_token_with_message_protection_client_template
- 18.54 oracle/wss10_saml_hok_token_with_message_protection_service_template
- 18.55 oracle/wss10_saml_token_with_message_protection_client_template
- 18.56 oracle/wss10_saml_token_with_message_protection_service_template
- 18.57 oracle/wss10_saml20_token_with_message_protection_client_template
- 18.58 oracle/wss10_saml20_token_with_message_protection_service_template
- 18.59 oracle/wss10_username_token_with_message_protection_client_template
- 18.60 oracle/wss10_username_token_with_message_protection_service_template
- 18.61 oracle/wss10_x509_token_with_message_protection_client_template
- 18.62 oracle/wss10_x509_token_with_message_protection_service_template
- 18.63 oracle/wss11_kerberos_token_over_ssl_client_template
- 18.64 oracle/wss11_kerberos_token_over_ssl_service_template
- 18.65 oracle/wss11_kerberos_token_with_message_protection_client_template
- 18.66 oracle/wss11_kerberos_token_with_message_protection_service_template
- 18.67 oracle/wss11_saml_token_with_message_protection_client_template
- 18.68 oracle/wss11_saml_token_with_message_protection_service_template
- 18.69 oracle/wss11_saml20_token_with_message_protection_client_template
- 18.70 oracle/wss11_saml20_token_with_message_protection_service_template
- 18.71 oracle/wss11_username_token_with_message_protection_client_template
- 18.72 oracle/wss11_username_token_with_message_protection_service_template
- 18.73 oracle/wss11_x509_token_with_message_protection_client_template
- 18.74 oracle/wss11_x509_token_with_message_protection_service_template
- 18.75 oracle/binding_oes_authorization_template
- 18.76 oracle/binding_oes_masking_template
- 18.77 oracle/component_oes_authorization_template
- 18.78 oracle/pii_security_template
- 18.79 oracle/sts_trust_config_client_template
- 18.80 oracle/sts_trust_config_service_template
- 18.81 oracle/wss_sts_issued_saml_bearer_token_over_ssl_client_template
- 18.82 oracle/wss_sts_issued_saml_bearer_token_over_ssl_service_template
- 18.83 oracle/wss11_sts_issued_saml_hok_with_message_protection_client_template
- 18.84 oracle/wss11_sts_issued_saml_hok_with_message_protection_service_template
- 18.85 oracle/wss11_sts_issued_saml_with_message_protection_client_template
- 18.86 oracle/binding_authorization_template
- 18.87 oracle/binding_permission_authorization_template
- 18.88 oracle/component_authorization_template
- 18.89 oracle/component_permission_authorization_template
- 18.90 Supported Algorithm Suites
- 18.91 Message Signing and Encryption Settings for Request, Response, and Fault Messages
- 18.92 oracle/security_log_template
-
17
Oracle Web Services Manager Predefined Policies
- Part VI Security and Policy Reference for Oracle Web Services
- Part VII Web Server Manager Support for Web Logic Server Secure Mode
-
A
Security and Policy Annotations for Oracle Web Services
- A.1 About Security and Policy Annotations for Web Services
- A.2 Summary of Security and Policy Annotations for Web Services
-
A.3
List of Security and Policy Annotations for Web Services
- A.3.1 @Addressing
- A.3.2 @AtomicTransaction
- A.3.3 @Buffering
- A.3.4 @CacheBinaryContent
- A.3.5 @CallbackManagementPolicy
- A.3.6 @CallbackMtomPolicy
- A.3.7 @CallbackPolicySet
- A.3.8 @CallbackSecurityPolicy
- A.3.9 @FastInfosetCallbackClient
- A.3.10 @FastInfosetClient
- A.3.11 @FastInfosetService
- A.3.12 @JMSTransportClient
- A.3.13 @JMSTransportService
- A.3.14 @ManagementPolicy
- A.3.15 @MaxRequestSize
- A.3.16 @MEXRequestProcessingService
- A.3.17 @MTOM
- A.3.18 @MTOMEncodeFaultService
- A.3.19 @MtomPolicy
- A.3.20 @OAuth1 Client Policy
- A.3.21 @Persistence
- A.3.22 @PolicyReference
- A.3.23 @PolicySet
- A.3.24 @POXHttpBindingService
- A.3.25 @Property
- A.3.26 @ReliabilityPolicy
- A.3.27 @ReliableMessaging
- A.3.28 @RequestProcessingService
- A.3.29 @SchemaValidation
- A.3.30 @SecurityPolicies (Oracle Infrastructure Web Services)
- A.3.31 @SecurityPolicies (Java EE Web Services)
- A.3.32 @SecurityPolicy (Oracle Infrastructure Web Services)
- A.3.33 @SecurityPolicy (Java EE Web Services)
- A.3.34 @SOAPRequestProcessingService
- A.3.35 @TestPageProcessingService
- A.3.36 @WSDLRequestProcessingService
- A.3.37 @WSLoggingLevel
-
B
Predefined Assertion Templates for Oracle Web Services
-
B.1
Assertion Template Settings for Oracle Web Services
- B.1.1 Action Match
- B.1.2 Algorithm Suite
- B.1.3 Authentication Header—Header Name
- B.1.4 Authentication Header—Mechanism
- B.1.5 Body Elements
- B.1.6 Bootstrap Message Security
- B.1.7 Client Entropy
- B.1.8 Client Policy URI
- B.1.9 Confirm Signature
- B.1.10 Confirmation Type
- B.1.11 Constraint Match
- B.1.12 Creation Time Required
- B.1.13 Derived Keys
- B.1.14 Enabled
- B.1.15 Encrypt Signature
- B.1.16 Encryption Key Reference Mechanism
- B.1.17 Fault
- B.1.18 Fault Message Settings
- B.1.19 Header Elements
- B.1.20 Include Entire Body
- B.1.21 Include MIME Headers
- B.1.22 Include SwA Attachment
- B.1.23 Include Timestamp
- B.1.24 Is Encrypted
- B.1.25 Is Signed
- B.1.26 Kerberos Token Type
- B.1.27 Key Type
- B.1.28 Keystore Recipient Alias
- B.1.29 Mutual Authentication Required
- B.1.30 Name Identifier Format
- B.1.31 Nonce Required
- B.1.32 Password Type
- B.1.33 Permissions
- B.1.34 Permission Class
- B.1.35 Port Endpoint
- B.1.36 Port URI
- B.1.37 Re-authenticate
- B.1.38 Recipient Encryption Key Reference Mechanism
- B.1.39 Recipient Sign Key Reference Mechanism
- B.1.40 Request
- B.1.41 Request Message Settings
- B.1.42 Request XPaths
- B.1.43 Request Namespaces
- B.1.44 Require Applies To
- B.1.45 Require Client Entropy
- B.1.46 Require External Reference
- B.1.47 Require Internal Reference
- B.1.48 Require Server Entropy
- B.1.49 Resource Match
- B.1.50 Response
- B.1.51 Response Message Settings
- B.1.52 Response Namespaces
- B.1.53 Response XPaths
- B.1.54 Roles
- B.1.55 Server Entropy
- B.1.56 Sign Key Reference Mechanism
- B.1.57 Sign Then Encrypt
- B.1.58 Token Type
- B.1.59 Transport Layer Security
- B.1.60 Transport Layer Security—Include Timestamp
- B.1.61 Transport Layer Security—Mutual Authentication Required
- B.1.62 Version
- B.1.63 Trust Version
- B.1.64 Use Derived Keys
- B.1.65 Use PKI Path
- B.1.66 WSDL Exist
- B.1.67 WSDL
-
B.2
Assertion Template Configuration Properties for Oracle Web Services
- B.2.1 algorithm
- B.2.2 anonymous.access
- B.2.3 application.name
- B.2.4 attesting.mapping.attribute
- B.2.5 auth.header.token.type
- B.2.6 caller.principal.name
- B.2.7 credential.delegation
- B.2.8 csf.map
- B.2.9 csf-key
- B.2.10 encryption-algorithm
- B.2.11 execute.action
- B.2.12 ignore.timestamp.in.response
- B.2.13 include-timestamp
- B.2.14 issued.token.caching
- B.2.15 issued.token.lifetime
- B.2.16 iteration
- B.2.17 iterations
- B.2.18 keysize
- B.2.19 keytab.location
- B.2.20 keystore.enc.csf.key
- B.2.21 keystore.recipient.alias
- B.2.22 keystore.sig.csf.key
- B.2.23 lookup.action
- B.2.24 on.behalf.of
- B.2.25 policy.reference.uri
- B.2.26 port.endpoint
- B.2.27 port.uri
- B.2.28 propagate.identity.context
- B.2.29 realm
- B.2.30 reference.priority
- B.2.31 remote-user
- B.2.32 resource.mapping.model
- B.2.33 resource.name
- B.2.34 resource.type
- B.2.35 rm.encrypt.body
- B.2.36 role
- B.2.37 salt
- B.2.38 saml.assertion.filename
- B.2.39 saml.audience.uri
- B.2.40 saml.envelope.signature.required
- B.2.41 saml.issuer.name
- B.2.42 saml.trusted.issuers
- B.2.43 sc.token.lifetime
- B.2.44 service.principal.name
- B.2.45 subject.precedence
- B.2.46 sts.auth.caller.principal.name
- B.2.47 sts.auth.keytab.location
- B.2.48 sts.auth.on.behalf.of.csf.key
- B.2.49 sts.auth.on.behalf.of.username.only
- B.2.50 sts.auth.service.principal.name
- B.2.51 sts.auth.user.csf.key
- B.2.52 sts.auth.x509.csf.key
- B.2.53 sts.in.order
- B.2.54 sts.keystore.recipient.alias
- B.2.55 user.csf.key
- B.2.56 use.single.step
- B.2.57 user.attributes
- B.2.58 user.roles.include
- B.2.59 user.tenant.name
- B.2.60 wsdl.uri
-
B.1
Assertion Template Settings for Oracle Web Services
-
C
Schema Reference for Predefined Assertions for Oracle Web Services
- C.1 wsp:Policy Element
- C.2 wsp:ExactlyOne Element
- C.3 orasp:Assertion Element
- C.4 orawsp:bindings Element
- C.5 orawsp:Config Element
- C.6 orawsp:PropertySet Element
- C.7 orawsp:Property Element
- C.8 orawsp:Description Element
- C.9 orawsp:Value Element
- C.10 orawsp:guard Element
- C.11 orawsp:resource-match Element
- C.12 orawsp:action-match Element
- C.13 orawsp:constraint-match Element
- C.14 oralgp:Logging Element
- C.15 orasp:binding-authorization Element
- C.16 orasp:binding-permission-authorization Element
- C.17 orasp:coreid-security Element
- C.18 orasp:http-security Element
- C.19 orasp:kerberos-security Element
- C.20 orasp:sca-component-authorization Element
- C.21 orasp:sca-component-permission-authorization Element
- C.22 orasp:sts-trust-config Element
- C.23 orasp:wss10-anonymous-with-certificates Element
- C.24 orasp:wss10-mutual-auth-with-certificates Element
- C.25 orasp:wss10-saml-hok-with-certificates Element
- C.26 orasp:wss10-saml-token Element
- C.27 orasp:wss10-saml-with-certificates Element
- C.28 orasp:wss10-username-with-certificates Element
- C.29 orasp:wss11-anonymous-with-certificates Element
- C.30 orasp:wss11-mutual-auth-with-certificates Element
- C.31 orasp:wss11-saml-with-certificates Element
- C.32 orasp:wss11-sts-issued-token-with-certificates Element
- C.33 orasp:wss11-username-with-certificates Element
- C.34 orasp:wss-saml-token-bearer-over-ssl Element
- C.35 orasp:wss-saml-token-over-ssl Element
- C.36 orasp:wss-sts-issued-token-over-ssl Element
- C.37 orasp:wss-username-token Element
- C.38 orasp:wss-username-token-over-ssl Element
- C.39 rm:RMAssertion Element
- C.40 wsaw:UsingAddressing Element
- C.41 wsoma:OptimizedMimeSerialization Element
- C.42 oralgp:fault Element
- C.43 oralgp:request Element
- C.44 oralgp:response Element
- C.45 oralgp:msg-log Element
- C.46 orasp:attachment Element
- C.47 orasp:auth-header Element
- C.48 orasp:body Element
- C.49 orasp:check-permission Element
- C.50 orasp:coreid-token Element
- C.51 orasp:denyAll Element
- C.52 orasp:element Element
- C.53 orasp:encrypted-elements Element
- C.54 orasp:encrypted-parts Element
- C.55 orasp:fault Element
- C.56 orasp:header Element
- C.57 orasp:issued-token Element
- C.58 orasp:kerberos-token Element
- C.59 orasp:msg-security Element
- C.60 orasp:permitAll Element
- C.61 orasp:request Element
- C.62 orasp:require-tls Element
- C.63 orasp:response Element
- C.64 orasp:role Element
- C.65 orasp:saml-token Element
- C.66 orasp:signed-elements Element
- C.67 orasp:signed-parts Element
- C.68 orasp:username-token Element
- C.69 orasp:x509-token Element
- C.70 orawsp:Description Element
- D Schema Reference for Web Services Policy Sets
-
E
Oracle Web Services Manager Introspection Plug-in for Oracle Virtual Assembly Builder
- E.1 About the OWSM Introspection Plug-in for Oracle Virtual Assembly Builder
-
E.2
Understanding the OWSM Introspection Plug-in
- E.2.1 OWSM Introspection Plug-in Parameter
- E.2.2 OWSM Introspection Plug-in Reference System Prerequisites
- E.2.3 OWSM Introspection Plug-in Usage Requirements
- E.2.4 OWSM Introspection Plug-in Resulting Artifact Type
- E.2.5 OWSM Introspection Plug-in Wiring
- E.2.6 OWSM Introspection Plug-in Wiring Properties
- E.2.7 OWSM Introspection Plug-in Appliance Properties
- E.2.8 OWSM Introspection Plug-in Supported Template Types
- F Twitter REST APIs