cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From cohei...@apache.org
Subject cxf git commit: Updating docs
Date Fri, 23 Oct 2015 16:29:03 GMT
Repository: cxf
Updated Branches:
  refs/heads/master c60357527 -> 7abdac771


Updating docs


Project: http://git-wip-us.apache.org/repos/asf/cxf/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf/commit/7abdac77
Tree: http://git-wip-us.apache.org/repos/asf/cxf/tree/7abdac77
Diff: http://git-wip-us.apache.org/repos/asf/cxf/diff/7abdac77

Branch: refs/heads/master
Commit: 7abdac771c87f759615292fe40dbe313ab14cda5
Parents: c603575
Author: Colm O hEigeartaigh <coheigea@apache.org>
Authored: Fri Oct 23 17:28:53 2015 +0100
Committer: Colm O hEigeartaigh <coheigea@apache.org>
Committed: Fri Oct 23 17:28:53 2015 +0100

----------------------------------------------------------------------
 .../main/java/org/apache/cxf/rt/security/SecurityConstants.java   | 3 +++
 1 file changed, 3 insertions(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf/blob/7abdac77/rt/security/src/main/java/org/apache/cxf/rt/security/SecurityConstants.java
----------------------------------------------------------------------
diff --git a/rt/security/src/main/java/org/apache/cxf/rt/security/SecurityConstants.java b/rt/security/src/main/java/org/apache/cxf/rt/security/SecurityConstants.java
index acc671d..5ee526b 100644
--- a/rt/security/src/main/java/org/apache/cxf/rt/security/SecurityConstants.java
+++ b/rt/security/src/main/java/org/apache/cxf/rt/security/SecurityConstants.java
@@ -150,6 +150,9 @@ public class SecurityConstants {
     
     /**
      * Whether to allow unsigned saml assertions as SecurityContext Principals. The default
is false.
+     * Note that "unsigned" refers to an internal signature. Even if the token is signed
by an
+     * external signature (as per the "sender-vouches" requirement), this boolean must still
be
+     * configured if you want to use the token to set up the security context.
      */
     public static final String ENABLE_UNSIGNED_SAML_ASSERTION_PRINCIPAL = 
             "security.enable.unsigned-saml-assertion.principal";


Mime
View raw message