|
|
|
|
|
|
|
Browse Blog Posts by Tags
-
A couple of folks were giving talks at TechEd this week and used a little Security Token Service (STS) prototype I'd put together. I'm posting a version here so that folks can download it and play with it at their leisure. Any suggestions for improvements, new features, bug reports, post a comment. Thanks...
-
The W3C WS-Addressing Core and SOAP Binding specs have reached Candidate Recommendation. Gentlemen, start your implementations!
-
Much of the last year of my life has been spent working on the WS-SecurityPolicy spec, which was republished today. This version is significantly different from the previous one . Here are the highlights; Formalized notion of a security binding Specific bindings for transport level security and both...
-
A fellow Indigette, Dan Roth, pointed out to me via e-mail and a comment on my earlier blog entry , that I'd neglected to explain *why* the service level message logs contain SOAP headers that were not actually transmitted by the client. This entry attempts to make up for my earlier omission. The binding...
-
While I was incommunicado last week the W3C WS-Addressing Working Group shipped the Last Call versions of their Core and SOAP Binding documents.
-
Some folks I know down at MSR Cambridge have produced a cool tool that gives you warnings and advice on the security (or lack thereof) of your policy files for WSE 2.0 SP2 . You can then use the advice it gives you to make your web services more secure. You can download the tool from their tools page...
-
The WS-Addressing WG are considering how to compare Endpoint References, specifically, the [reference parameters] property. Now the [reference parameters] of an EPR are XML elements so they really need to be canonicalized in order for comparison to work. Canonicalization plays a major part in XML Digital...
-
I'll try to respond properly sometime this week, but the discussion I first noted via Steve , is ongoing between Steve , Savas and Mark . And I love Chris' reference to Humpty-Dumpty, but then I've always enjoyed Alice Through The Looking-Glass .
-
Mark replies to my recent missive . Regarding the value of wsa:To itself, apparently Mark's concern is: "…that the spec didn't require that the address go in the appropriate place in the application protocol." I really don't see how WS-Addressing can specify this given that the spec itself doesn...
-
Steve comments on Mark Baker's current issue with WS-Addressing. There are several things which are interesting about this situation. The first interesting point to me, is Mark's statement from his original post to the WS-Addressing WG; "Here, "foobar@fabrikam123.example" is required to go in the SOAP...
-
Rich Salz rails against WSDL 2.0. Interesting reading…
-
MVP Summit here in Brazil is proving to be a blast. My first talk on Web Services Protocols was well received with plenty of interesting and insightful questions from the audience. I love interactive talks! And I even got through all my slides, just! Tomorrow, Indigo! After dinner, we adjourned to the...
-
XOP , MTOM and RRSHB are now at PR.
-
Simon Fell comments on being unable to persuade WSE 2.0 to accept/return WS-Addressing Endpoint References. There is a schema for WS-Addressing, which might help. And I do remember getting this working for the WS-Eventing workshop, although that was back in April and on a pre-release version of WSE 2...
-
Tim Bray points out that RFC2396bis is finally final. Result! I don't know how many man years it's taken to get this thing finished but I do know a lot of people have provided input, made arguments and participated in discussion. Congrats to all involved.
|
|
|
|
|
|