User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - PROGRAMMER GUIDE TO SERVLETS

291

292

293

294

295

296

297

298

299

300

Settings for the XML Encryption

15-19

Specifying the Encryption Target

The following two types of encryption target can be specified for encryption using the XML encryption.

• Any nodes inside the SOAP envelope. (However, the SOAP envelope, SOAP body, and SOAP

header are excluded.)

− ID reference

− XPath

• Attachment file

− Content-Id

Specify the Encryption Target using ID Reference

The encryption target can be specified using ID reference in the same manner as the SOAP digital

signature using ID reference. For information about how to specify the encryption target, refer to

Specifying the Signature Target.

Specify the Encryption Target using XPath

If the encryption target.cannot be specified using ID reference, XPath can be used to specify it. To use

XPath to specify the encryption target, it is necessary to specify "XPath" or "XPath(Content)" as the type

of encryption target of the Web Service Information Edit Tool.

If "XPath" is specified as the type of encryption target, elements specified by XPath become the

encryption target. If, on the other hand, "XPath(Content)" is specified as the type of encryption target

contents of the specified elements become the encryption targets.

A SOAP envelope element becomes the initial context node when evaluating an XPath expression.

Example

<soapenv:Envelope xmlns:soapenv=”http://schemas.xmlsoap.org/soap/envelope/”

xmlns:xsd=”http://www.w3.org/2001/XMLSchema”

xmlns:xsi=”http://www.w3.org/2001/XMLSchema-instance”>

<soapenv:Body>

<m:ResponseBody xmlns:m="urn:SampleMsg">

<Response>response string...</Response>

</m:ResponseBody>

</soapenv:Body>

</soapenv:Envelope>

• descendant::Response

Specify the Response element, which is a descendant of the SOAP envelope. If "XPath" is

specified as the type of encryption, the Response element will be encrypted. If "XPath(Content)" is

specified as the type of encryption, the string "response string...," which is the content of the

Response element, will be encrypted.

• child::*[local-name()='Body']

Specify the soapenv:Body element, which is a child of the SOAP envelope. If "XPath(Content)" is

specified as the type of encryption, the m:ResponseBody element, which is the content of the

soapenv:Body element, will be encrypted. If "XPath" is specified, an error occurs during execution

because the SOAP body element itself cannot be encrypted.