WSS signing with symmetric key -- secret key

Question

I'm trying to sign three parts in a SOAP message, using the following algorithms:

I understand that this alg requires a secret key as an input, which in my case will be from a WS-Trust token:
Fr2YXrFAZ+1/ESGQN0+j/w9C5kQve2KmVr/SfbCth60=

Is there a way that I can provide this key to the WSS outgoing signature interface, preferably without using a keystore.

smartbear_suppo · Answer

Hello,Atm there is no way you can do it a way you desire, but we'll fix it.robert

mark_e · Answer

Thank you for the quick response.Do you have an estimation when this would be fixed?Alternately, is it possible to extend this functionality with a java custom built plug-in or groovy script? I haven't had much time to delve into the extendability of soapUI.

smartbear_suppo · Answer

Hi Mark,We have this feature on our TO DO list. It requires that the underlying WSS4J library supports secret key signing (at least it didn't the last time we've checked). We do not have a time estimate on when this feature will be ready.Cheers!/Nenad Nikolic a.k.a. Shonzilla

Forum Discussion

WSS signing with symmetric key -- secret key

3 Replies

Related Content

Read aws secrets from ReadyAPI

How are you securing secrets for storing your projects in github?

The Secrets of Successful Collaboration - BDD

WSS signing with symmetric key -- secret key

sign and encrypt the request value?

Recent Discussions

Mismatch between response from a CURL request and ReadyAPI response

Reading dynamic parameter from resource path

Parameterising JDBC Connection Settings..Can you do it?

Test Runner - Report All in One File

GroovyScript Help - Repeating JSON Attributes Have Specific Value.....some of the time?