WSE Settings 2.0 Tool (WseSettingsVS2.dll and WseConfigEditor2.exe)

  • Article

The WSE Settings 2.0 tool allows you to enable WSE features by using a graphical user interface in Visual Studio .NET 2003, rather than editing the configuration file directly. Using the WSE Settings 2.0 tool can help you avoid typographical and schema errors in your configuration file.

To use the WSE Settings 2.0 tool from within Visual Studio .NET 2003

  1. In Visual Studio .NET 2003, open a solution or project that you want to use the WSE with.

  2. In Solution Explorer, right-click the project you want to use the WSE with, and then click WSE Settings 2.0.

To use the WSE Settings 2.0 tool from the Start menu

  1. Click Start, point to All Programs, point to Microsoft WSE 2.0, and then click Configuration Editor.

  2. On the File menu, click Open.

  3. In the Open dialog box, navigate to a .config file that you want to view or modify, and then click Open.

The following screen shot shows the General tab of the WSE Settings 2.0 tool.

gxaWSESettingsTool image

Security

To specify where WSE looks for X.509 certificates and how it verifies them

  1. Click the Security tab.

  2. In the Store location box, select the certificate store that you want WSE to load X.509 certificates from.

  3. Check the other options under X.509 Certificate Settings that control how the WSE verifies an X.509 certificate.

    The following table shows the other options under X.509 Certificate Settings.

To add or remove binary security token managers

  1. Click the Security tab.

  2. Click Add or Remove.

    If you click Add, the Binary SecurityToken Manager dialog box appears.

    The following table shows the Binary SecurityToken Manager dialog box options.

To add or remove non-binary security token managers

  1. Click the Security tab.

  2. Click Add or Remove.

    If you click Add, the SecurityToken Manager dialog box appears.

    The following table shows the Security Token Manager dialog box options.

Policy

To specify the policy file

  1. Click the Policy tab.

  2. Select the Enable Policy check box.

  3. Click Browse.

  4. From the Open dialog box, select the policy file, and then click Open.

    A <policy> Element (WSE for Microsoft .NET) (2) is added to the configuration file.

To edit the application policy

  1. Step 1

  2. Step 2Click the Policy tab.

  3. Under Edit Application Policy, click Add.

  4. From the Add or Rename Endpoint URI dialog, type the name of the endpoint to modify and click OK.

  5. The WSE Security Setting Tool wizard will start. Click Next.

  6. From the Choose the Type of Application dialog, select Secure a server application to secure the Web service or Secure a client application to secure a client of the Web service. Click Next.

  7. From the Creating a Secure Conversation dialog, click Enable Secure Conversation to enable secure conversation.

    1. From the Client Authentication Method pane, select the desired type of authentication.
    2. From the Select Server Certificate pane, click Select Certificate. Choose the certificate from the Select Certificate dialog and click OK.

    Click Next to continue.

  8. From the Request Message Settings dialog, choose whether to require digital signing and encryption of incoming SOAP messages.

    1. To require digital signing of incoming messages, select the Require signatures check box in the Integrity pane and choose the type of token or certificate to use for signing.
    2. To require encryption of incoming messages, select the Require encryption check box in the Confidentiality pane. Click Select certificate and from the Select Certificate dialog, choose the certificate to use for encryption. Click OK.

    Click Next to continue.

  9. From the Response Message Settings dialog, choose whether to require digital signing and encryption of outgoing SOAP messages.

    1. To require digital signing of outgoing messages, select the Require signatures check box in the Integrity pane and choose the type of token or certificate to use for signing.
    2. To require encryption of outgoing messages, select the Require encryption check box in the Confidentiality pane. Select either Use token from request or Use X.509 Cert. If using an X.509 certificate, click Select certificate and from the Select Certificate dialog, choose the certificate to use for encryption. Click OK.

    Click Next to continue.

  10. Review your settings from the Create Security Settings dialog and click Finish to save the settings to the configuration file.

Issuing Security Tokens

To automatically issue SecurityContextToken security tokens

  1. Click the TokenIssuing tab.

  2. Select the Auto Issue Security Context Token check box.

    An <autoIssueSecurityContextToken> Element is added to the configuration file.

To specify the security token used to sign the response for security token requests

  1. Click the TokenIssuing tab.

  2. In the ServerToken KeyInfo box, type the KeyInfo clause for a security token, as it would appear within a <KeyInfo> element of a SOAP message.

    When an X.509 certificate is used to sign the responses for security token requests, click the X509Certificates link to select the X.509 certificate. The KeyInfo clause for that X.509 certificate is added to the ServerToken KeyInfo box.

    A <serverToken> Element is added to the configuration file.

To specify settings for issued SecurityContextToken security tokens

  1. Click the TokenIssuing tab.

  2. In the TTL In Seconds box, type the time-to-live (TTL), in seconds, for the issued SecurityContextToken security tokens.

Custom Filters

To add a custom input filter

  1. Click the Customized filters tab.

  2. Under Input Filters, click Add.

    The Customized Filter Input dialog box appears.

  3. Type the fully qualified type name for the custom input filter.

    An <add> Element for <input> element is added to the configuration file.

To add a custom output filter

  1. Click the Customized filters tab.

  2. Under Input Filters, click Add.

    The Customized Filter Input dialog box appears.

  3. Type the fully qualified type name for the custom output filter.

    An <add> Element for <output> element is added to the configuration file.

Routing

To add a router

  1. Click the Routing tab.

  2. Under Routing Handlers, click Add.

    The Routing Handler Input dialog box appears.

  3. In the Type list, select Microsoft.Web.Services2.Messaging.SoapHttpRouter.

    If you have created a content-based router, type the fully qualified type name in the Type list. For more information about content-based routing, see How to: Route SOAP Messages Based Upon Their Content.

  4. In the Path box, enter the file extension of incoming requests that must be routed through the router.

  5. In the Verb box, enter the list of comma-separated HTTP verbs or the asterisk (*) wildcard character.

    HTTP requests that match the path specified in step 4 and contain the HTTP verb specified in this step are handled by the router specified in step 3.

  6. Click OK.

    An <add> Element for <httpHandlers> (WSE for Microsoft .NET) element is added to the configuration file.

To add a referral cache

  1. Click the Routing tab.

  2. Under Referral Cache, click Browse.

    The Open dialog box appears.

  3. Select the file containing the referral cache, and then click Open.

    A <referral> Element is added to the configuration file.

Diagnostics

To enable policy tracing

  1. Click the Diagnostics tab.

  2. Select the Enable Policy Trace check box.

  3. In the Send Policy box, type the name of the file in which messages are logged for sent messages.

    It is recommended that the file have a .webinfo extension, so that users cannot request the file by default.

  4. In the Receive Policy box, type the name of the file in which messages are logged for received messages.

    It is recommended that the file have a .webinfo extension, so that users cannot request the file by default.

    A <policyTrace> Element is added to the configuration file.

To enable SOAP message tracing

  1. Click the Diagnostics tab.

  2. Select the Enable Message Trace check box.

  3. In the Input File box, type the name of the file in which incoming SOAP messages are logged.

    It is recommended that the file have a .webinfo extension, so that users cannot request the file by default.

  4. In the Output File box, type the name of the file in which outgoing SOAP messages are logged.

    It is recommended that the file have a .webinfo extension, so that users cannot request the file by default.

  5. A <trace> Element (WSE for Microsoft .NET) is added to the configuration file.

To specify the level of detail on errors that are returned to SOAP message senders

  1. Click the Diagnostics tab.

  2. In the Send Detailed Error Information list, choose the level of error reporting detail.

    The following table shows the available options.

See Also

Concepts

Configuration File Schema

Other Resources

WSE Tools