axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "AravindPS (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (AXIS2-5343) USERNAME_TOKEN_UNKNOWN deprecated in axis2 1.6.2 and so not compatible with our written code using axis2 1.5.5
Date Fri, 15 Jun 2012 11:04:42 GMT

    [ https://issues.apache.org/jira/browse/AXIS2-5343?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13295583#comment-13295583
] 

AravindPS commented on AXIS2-5343:
----------------------------------

Hi,
 Thanks for looking into this issue. 
 Can you please let us know how to overcome this problem. Is this a rampart issue and not
axis2 related issue. Is there any option in axis2 to configure custom validators for USERNAME_TOKEN
type at server side (in other word make it work like USERNAME_TOKEN_UNKNOWN). Can we configure
"NoOpValidator,java" as the validator?


Thanks
aravind 
                
> USERNAME_TOKEN_UNKNOWN deprecated in axis2 1.6.2 and so not compatible with our written
code using axis2 1.5.5
> --------------------------------------------------------------------------------------------------------------
>
>                 Key: AXIS2-5343
>                 URL: https://issues.apache.org/jira/browse/AXIS2-5343
>             Project: Axis2
>          Issue Type: Bug
>          Components: modules
>    Affects Versions: 1.6.2
>         Environment: Windows 7 Enterprise Service pack 1, jboss-5.1.0.GA, axis2-1.6.2
(exploded war), rampart-1.6.2
>            Reporter: AravindPS
>              Labels: axis21.6, rampart1.6.2
>
> Hi, 
>  We are upgrading from Axis2 1.5.5/ Rampart 1.5.11 to axis2 1.6.2/Rampart1.6.2. Here
we have seen that the USERNAME_TOKEN_UNKNOWN has been deprecated and hence there is no backward
compatibility. At this late stage we cannot implement the code to provide passwords at the
server password callback class. Also the passwords that we have are not plain text passwords.
So we have a problem. 
>  The server password callback class is asking for the password. We have designed the
services such that for username token authentication we are sending the request to another
directory store for authentication. 
>  Is there a way to process this without giving the password at server side. Can we configure
custom validators to pass the authentication for USERNAME_TOKEN without validating the passwords?
Do we have an option to configure custom validators in Axis2 1.6.2 configuration files?
> If yes can you tell us how to configure custom validators? 
> Also, if there is any other solution do let us know. 
> Note: I have filed an issue with rampart "RAMPART-374". They have not come back on this
yet.
> Thanks, 
> Aravind 

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

---------------------------------------------------------------------
To unsubscribe, e-mail: java-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: java-dev-help@axis.apache.org


Mime
View raw message