axis-java-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ruchith Fernando" <>
Subject Re: refering to tokens in rampart sec header
Date Wed, 03 Jan 2007 12:00:30 GMT

On 12/20/06, George Stanchev <> wrote:
> Hi,
> I need to create a securty token (saml, username) and refer to
> it from the message body via wsse:SecurtyTokenReference. I am
> thinking that this is impossible using rampart since at the time
> when the payload is created the token is not present and when the
> token gets created, there is no control to the client.
> Am I correct in my assumption?

Yes! This is correct.

> Are there alternatives besides creating the token manually and
> stuffing it in the sec header prior to calling sending the call on
> its way?

We don't haev an alternative right now and I believe this will be a
useful feature with the WS-Trust use cases.
We have to come up with a clean mechanism to do this where we can
specify a token to be added to the security header and to be used for
other purposes such as authentication or crypto operations.


> Thanks!
> George Stanchev
> **********************************************************************
> This email and any files transmitted with it are confidential and
> intended solely for the use of the individual or entity to whom they
> are addressed. Any unauthorized review, use, disclosure or distribution is prohibited.
If you are not the intended recipient, please contact the sender by reply e-mail and destroy
all copies of the original message.
> ---------------------------------------------------------------------
> To unsubscribe, e-mail:
> For additional commands, e-mail:


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message