WS_SECURITY_PROPERTY_CONSTRAINT structure

This structure is used to specify a set of constraints for a particular security property. Any property constraints that are not specified will use the default constraints.

Syntax

C++

struct WS_SECURITY_PROPERTY_CONSTRAINT {
  WS_SECURITY_PROPERTY_ID id;
  void*                   allowedValues;
  ULONG                   allowedValuesSize;
  struct  out;
};

Members

id

The id of the security property. The following security property constraints may be specified:

• WS_SECURITY_PROPERTY_TIMESTAMP_USAGE

  This property constraint may be specified when any of the following security bindings are specified:

  • WS_USERNAME_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_KERBEROS_APREQ_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_CERT_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_SECURITY_CONTEXT_MESSAGE_SECURITY_BINDING_CONSTRAINT

  If this property is not specified, then the default constraint value of WS_SECURITY_TIMESTAMP_USAGE_ALWAYS will be used.

• WS_SECURITY_PROPERTY_TRANSPORT_PROTECTION_LEVEL

  This property constraint may be specified when any of the following security bindings are specified:

  • WS_SSL_TRANSPORT_SECURITY_BINDING_CONSTRAINT
  • WS_TCP_SSPI_TRANSPORT_SECURITY_BINDING_CONSTRAINT
  • WS_HTTP_HEADER_AUTH_SECURITY_BINDING_CONSTRAINT

  If this property is not specified, then the default constraint value of WS_PROTECTION_LEVEL_SIGN_AND_ENCRYPT will be used.

  WS_SECURITY_PROPERTY_SECURITY_HEADER_LAYOUT

  This property constraint may be specified when any of the following security bindings are specified:

  • WS_USERNAME_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_KERBEROS_APREQ_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_CERT_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_SECURITY_CONTEXT_MESSAGE_SECURITY_BINDING_CONSTRAINT

  If this property is not specified, then the default constraint value of WS_SECURITY_HEADER_LAYOUT_STRICT will be used.

  WS_SECURITY_PROPERTY_SECURITY_HEADER_VERSION

  This property constraint may be specified when any of the following security bindings are specified:

  • WS_USERNAME_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_KERBEROS_APREQ_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_CERT_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_SECURITY_CONTEXT_MESSAGE_SECURITY_BINDING_CONSTRAINT

  If this property is not specified, then the default constraint value of WS_SECURITY_HEADER_VERSION_1_1 will be used.

  WS_SECURITY_PROPERTY_ALGORITHM_SUITE_NAME

  This property constraint may be specified when any of the following security bindings are specified:

  • WS_USERNAME_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_KERBEROS_APREQ_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_CERT_MESSAGE_SECURITY_BINDING_CONSTRAINT
  • WS_SECURITY_CONTEXT_MESSAGE_SECURITY_BINDING_CONSTRAINT

  If this property is not specified, then the default constraint value of WS_SECURITY_ALGORITHM_SUITE_NAME_BASIC256 will be used.

allowedValues

An array of values which are acceptable. The type of the values in the array correspond to the type of the values of the security property. See the documentation for a particular security property to determine the type of the property.

allowedValuesSize

The total size of the allowedValues array, in bytes. This size must be a multiple of the size of the type of the value of the property.

out

When WsMatchPolicyAlternative returns NOERROR, the entire contents of this structure will be filled out.

Requirements

Minimum supported client	Windows 7 [desktop apps | Windows Store apps]
Minimum supported server	Windows Server 2008 R2 [desktop apps | Windows Store apps]
Header	WebServices.h