Share via


<security> Element

Controls the security settings for a WSE application.

<microsoft.web.services3> Element

<security>
  <binarySecurityTokenManager />
  <cryptography />
  <defaultTtlInSeconds value />
  <limits maxSignedItems maxEncryptedItems= maxTokens />
  <securityTokenManager qname type />
  <timeToleranceInSeconds value />
  <x509 storeLocation verifyTrust allowTestRoot />
</security>

Attributes and Elements

Attributes

None

Child Elements

Element Description

<binarySecurityTokenManager> Element

Optional element. Specifies a custom class to manage the authentication and loading of binary security tokens from soap envelopes and from policy documents.

<cryptography> Element

Optional element. Specifies the cryptographic algorithms used by WSE to sign and encrypt SOAP messages.

<defaultTtlInSeconds> Element

Defines the default number of seconds that a SOAP message is valid after its creation.

<limits> Element

Optional element. Specifies the limitations on incoming SOAP messages.

<securityTokenManager> Element

Optional element. Specifies a custom class to manage the authentication and loading of XML security tokens from soap envelopes and from policy documents.

<timeToleranceInSeconds> Element

Specifies the time buffer used by WSE to determine when a SOAP message is valid.

<x509> Element

Optional element. Specifies where WSE looks for X.509 certificates and how to verify them.

Parent Elements

Element Description

<microsoft.web.services3> Element

Controls the configuration options defined by WSE.

Remarks

Before adding the <security> element to a configuration file, you must add the microsoft.web.services3 configuration section handler to the configuration file. For details about adding the microsoft.web.services3 configuration section handler, see <section> Element.

Example

The following code example specifies that WSE retrieves X.509 certificates from the CurrentUser certificate store and also specifies that certificates signed by a test root pass verification.

<configuration>
  <microsoft.web.services3>
    <security>
      <x509 storeLocation="CurrentUser"
            verifyTrust="true" 
            allowTestRoot="true" />
    </security>
  </microsoft.web.services3>
</configuration>

See Also

Reference

<binarySecurityTokenManager> Element
<cryptography> Element
<limits> Element
<securityTokenManager> Element
<x509> Element