Products
Technology for your digital platform that you can run yourself, in a private cloud, or as SaaS.
API Management
Integration
Identity & Access Management
Your Digital Platform, as a Service
Platform
- Your internal developer platform as a service to quickly deliver applications.
Solutions
By Technology
- API Management
  Solutions to deliver your APIs in any environment.
- Integration
  Break down data silos, streamline workflows, and unlock insights.
- Identity & Access Management
  Create secure, unique, and compelling digital experiences with ease.
  
  Customer IAM
  
  For Consumers (B2C)
  
  For B2B Applications (B2B CIAM)
  
  For Citizens (G2C)
  
  Workforce IAM
  
  API Access Management
By Industry
- Healthcare
  Provide awesome digital experiences for payers, providers, and patients.
- Finance
  Deliver secure financial experiences at speed.
- Government
  Deliver secure and simplified digital services for governments and citizens.
Featured Blog
- Implementing an Event-Driven GraphQL BFF with Real-Time Notifications
  Read Blog
Resources
- Training and Certification
- Events
Featured Whitepaper
- Transactions in a Microservice World
  Read Whitepaper
Support
- Subscription
  Learn About the Benefits of a WSO2 Subscription for Commercial Use.
- Updates
  Maintain the health and security of your solution.
- Consulting Services
  A full range of services to help you get the most out of your WSO2 project.
Featured Blog
- Self Manage Your WSO2 Support Portal Users
  Read Blog
Company
- About WSO2
  Learn about who we are and our journey.
- Team
  The people behind our innovative technologies.
- Customers
  See how we’ve helped leading enterprises from around the world.
- Careers
  Discover how you can make an impact.
- Partners
  Learn about the benefits of partnering with us.
- News
  The latest updates and insights.
Customer Spotlight
- YOMA x WSO2: Building Better Banking Relationships
  Read Case Study
Community
Contact Us
EN
- French
- German
- Portuguese
- Spanish
Profile

30 Jul, 2007

Timestamp validation fails! Why?

Ruchith Fernando
Software Engineer - WSO2

We usually develop and test secure Web services applications in one machine. Then, when we actually test this application with a remote client, some of the initial issues we run into are timestamp validation issues. This is mainly due to the clocks of the two machines not being in sync. In real life scenarios, we certainly cannot expect clocks to be in sync. You can synchronize clocks across machines automatically with tools that use Network Time Protocol.

Apache Rampart/Java introduces a new configuration assertion to allow time differences between communicating hosts.

<timestampMaxSkew>value<timestampMaxSkew>

The "value" must be the allowed time skew in seconds and must be specified as an integer. By default Apache Rampart/Java tolarates a maximum time skew of five (5) minutes (300 seconds).

The <timestampMaxSkew> assertion must be placed within the <RampartConfig> assertion as an immediate child element.

Applies To

1. Apache Rampart/Java

About Author

Ruchith Fernando
Software Engineer
WSO2 Inc.