Contents
The Extract WSS Header filter extracts a WS-Security
<Header>
block from a message. The extracted
security header is stored in the authentication.ws.wsblockinfo
message attribute.
To process this security header later in the policy, you can specify
this message attribute in the configuration screen for the specific processing
filter. For example, to sign the security header, you can specify the
authentication.ws.wsblockinfo
message attribute in the
What to Sign section of the Sign Message filter.
Open the Message Attribute tab on the What to Sign
screen, and specify this attribute to sign the security header.
Configure the following fields on the Extract WSS Header filter configuration screen:
Name:
Enter an intuitive name for this filter (for example, Extract Current Actor WSS Header).
Actor or Role:
Specify the name of the SOAP Actor or Role of the WS-Security header
that you want to extract. Remember, the WS-Security header is stored
in the authentication.ws.wsblockinfo
message attribute.
Remove enclosing WS-Security element:
This option removes the enclosing <wsse:Security>
element from the message.