Metro12UISpec
UI spec for WSIT NB modules for METRO 1.2 (.NET3.5 compatible release)
Main changes for this release
- Added versioning of the config files
- Added Kerberos support
- Added support for additional security settings
- Added support for additional RM settings
The rest of features or UI not shown in this UI spec remains unchanged.
WSIT panel - Service
Screen 1a - Basic Panel
+---Edit WS Attributes------------------------------------------------------+ | '''_''''''_''''''_''''''_''''''_''''''_''''''_''''''_'''___ | | | Customizations |// Quality Of Service //| | | +-----------------------------------------------------------------------+ | | | | | | | + NewWebService2PortBinding | | | | | | | | Version Compatibility: [_.NET3.0/METRO1.0___v] | | | | ------------------------------------------------------------------- | | | | [ ] Optimize Transfer of Binary Data (MTOM) | | | | ------------------------------------------------------------------- | | | | [ ] Reliable Message Delivery | | | | [ ] Deliver Messages in Exact Order | | | | [Advanced...] | | | | ------------------------------------------------------------------- | | | | [ ] Secure Service | | | | Security Mechanism: |_Transport Security (SSL)v| [Configure...] | | | | +-------------------------------------------------------------+ | | | | | This is a description text for the profile. Each of the | | | | | | security mechanisms (profiles) has a short associated | | | | | | description (no more than 4 lines). | | | | | +-------------------------------------------------------------+ | | | | [ ] Use Development Defaults | | | | [[Keystore... | Keystore... ]] [[Truststore... | Truststore...]] [Kerberos... ] | | | | [[Validators... | Validators...]] [Advanced... ] | | | | | | | | [[ | ]] Act As Secure Token Service (STS) [Configure... ] | | | | ------------------------------------------------------------------- | | | | [ ] Allow TCP Transport | | | | [ ] Disable Fast Infoset | | | | | | | | + operation1 | | | | + operation2 | | | | + operation3 | | | | | | | | | | | | | | | | | | | | | | | +-----------------------------------------------------------------------+ | | | +---------------------------------------------------------------------------+
Combo box items:
Security Profile: 1 |_Transport Security (SSL)'''_''''''_''''''_'''____v|
2 |_Message Authentication over SSL'''_''''''_'''___|
3 |_SAML Authorization Token over SSL'''_''''''_'''_|
4 |_Username Authentication - Symmetric Keys____| (default)
5 |_Mutual Certificates - Sign & Encrypt'''_'''___|
6 |_Endorsing Certificate'''_''''''_''''''_''''''_'''___|
7 |_SAML Sender Vouches With Certificates'''_'''__|
8 |_SAML Holder of Key With Mutual Certificates_|
9 |_Symmetric Binding with Kerberos Tokens'''_'''_|
10 |_STS Issued Token'''_''''''_''''''_''''''_''''''_'''___|
11 |_STS_Issued_Token_for_Service_Certificate____|
12 |_STS Issued Endorsing Token'''_''''''_''''''_'''___|
Version Compatibility: [_.NET3.0_/METRO1.0__v] (default)
[_.NET3.5_/METRO1.2__v]
[[KeyStore... | KeyStore...]], [Truststore...]- Keystore button leads to screen 4a, Truststore 4b
[Kerberos...]- Kerberos button leads to screen 4c
Screen 2 - Advanced Reliable Messaging Attributes
+-Advanced Reliable Messaging Attributes------------+ | | | Message Delivery Assurance |_ExactlyOnce___v| | | [ ] Flow Control | | Maximum Flow Control Buffer size: [____] | | Sequence Inactivity Timeout: [____] | | | +---------------------------------------------------+
Combo box items:
Message Delivery Assurance: |_Exactly Once___v| (default)
|_At Least Once__v|
Maximum Flow Control Buffer Size- Disabled if Flow Control is disabled
Screen 3 - Kerberos Profile
+-Security Profile Configuration------------------------+ | | | Algorithm Suite: |_Basic 128'''_'''v| | | Security Header Layout: |_Strict'''_'''___v| | | [ ] Require Derived Keys | | [ ] Establish Secure Session (Secure Conversation) | | [ ] Require Derived Keys for Secure Session | | [ ] Encrypt Before Signing | | [ ] Encrypt Signature | | | | [[ OK | OK ]] [Cancel ] | +-------------------------------------------------------+
Screen 4a - Keystore configuration
+------Keystore configuration-------------------------------------------------------+ | | | Location: |C:\blabla\keystore.jks'''_''''''_''''''_''''''_'''| [Browse... ] | | Keystore Password: |'''_''''''_''''''_''''''_''''''_''''''_''''''_''''''_'''__| | | Alias: |'''_''''''_''''''_''''''_''''''_''''''_''''''_''''''_'''_v| [LoadAliases] | | Key Password: |'''_''''''_''''''_''''''_''''''_''''''_''''''_''''''_'''__| | | Alias Selector Class: |a.b.c.pkg.MySelector'''_''''''_''''''_''''''_'''__| [Browse... ] | | | | [[ OK | OK ]] [ Cancel ] | +-----------------------------------------------------------------------------------+
Screen 4b - Truststore configuration
+------Truststore configuration---------------------------------------------------+ | | | Location: |C:\blabla\truststore.jks'''_''''''_''''''_'''_| [Browse... ] | | Truststore Password: |'''_''''''_''''''_''''''_''''''_''''''_''''''_''''''_'''| [LoadAliases] | | Alias: |'''_''''''_''''''_''''''_''''''_''''''_''''''_'''____v| | | Certificate Selector: |a.b.c.pkg.MySelector'''_''''''_''''''_''''''_'''| [Browse... ] | | | | [[ OK | OK ]] [ Cancel ] | +---------------------------------------------------------------------------------+
Screen 4c - Kerberos
+------Kerberos configuration--------------+ | | | Login Module: |'''_''''''_''''''_''''''_'''___v| | | | | | | [[ OK | OK ]] [ Cancel ] | +------------------------------------------+
WSIT panel - Client
+-----Edit WS Attributes---------------------------------------------+ | '''_''''''_''''''_''''''_''''''_''''''_''''''_''''''_'''_ | | | Customizations |//Quality Of Service//| | | +----------------------------------------------------------------+ | | | | | | | + Transport | | | | | | | | [ ] Automatically Select Optimal Encoding (XML/Fast Infoset)| | | | [ ] Automatically Select Optimal Transport (HTTP/TCP) | | | | | | | | + Callback: | | | | | | | | [ ] Use Development Defaults | | | | [[Keystore... | Keystore... ]] [[Truststore... | Truststore...]] [Kerberos... ] | | | | -------------------------------------------------------- | | | | Authentication Credentials: |_Static___v_| | | | | Default Username: |'''_''''''_'''| | | | | Default Password: |'''_''''''_'''| | | | | | | | | SAML Callback Handler: |'''_''''''_''''''_'''____| [Browse...] | | | | Timestamp Timeout (s): |'''_''''''_''''''_'''____| | | | | | | | | + Advanced | | | | | | | | RM Resend Interval (ms): |'''_''''''_''''''_''''''_''''''_'''__| | | | | RM Close Timeout (ms): |'''_''''''_''''''_''''''_''''''_'''__| | | | | RM Ack Request Interval (ms): |'''_''''''_''''''_''''''_''''''_'''__| | | | | RM Inactivity Timeout (ms): |'''_''''''_''''''_''''''_''''''_'''__| | | | | ----------------------------------------------------------- | | | | Secure Session Token Lifetime (ms): |'''_''''''_''''''_''''''_'''_| | | | | [ ] Renew Expired Secure Session Tokens | | | | [ ] Require Cancel of Secure Session | | | | ----------------------------------------------------------- | | | | Maximum Clock Skew (ms): |'''_''''''_''''''_''''''_''''''_'''| | | | | Timestamp Freshness Limit (ms): |'''_''''''_''''''_''''''_''''''_'''| | | | | [ ] Use Default Certificate Revocation Mechanism | | | | | | | +----------------------------------------------------------------+ | | | | [ErrorMessage...................................................] | | | +--------------------------------------------------------------------+
