What you have provided is how to programmatically set the rampart config. The set methods here are equivalent to the parameters in rampart configuration. All these parameters are listed at rampart config guide.
A more useful explanation of the two properties can be found in this blog post. In short,
encryptionUser
- The alias for the public key to be used for encrypting the message. The public key certificate is available in the keystore under this alias.
userCertAlias
- The alias used to retrieve the password of the corresponding private key from the CallbackHandler for signing.