Signature Element for Outbound Messages
Inclusion of this element causes the facility to sign the outbound SOAP message body.
Token Reference Type
The token reference type attribute indicates how the signed certificate will be included in the message header:
Reference Type | Item Included in Header |
Direct | The token itself, as a sequence of base-64-encoded bytes |
IssuerAndSerial | The token’s X.509 issuer and serial umber |
SubjectKeyIdentifier | The token’s X.509 subject key identifier |
Thumbprint | The token’s thumbprint |
Example
<Signature
TokenReferenceType="IssuerAndSerial"/>
Include Certificate Path
This parameter controls whether to send the signing certificate as a single certificate or as a certificate path (specified as “True” or “False”).
Default: False (meaning, send the signing certificate as a single certificate). Applies only when the TokenReferenceType is set to “Direct.”
Note:
Partial or multiple signing of a message, or changing the message digest algorithm, is not supported.
Example
<Signature
TokenReferenceType="Direct"
IncludeCertPath="True"/>