Return-Path: X-Original-To: apmail-cxf-issues-archive@www.apache.org Delivered-To: apmail-cxf-issues-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id D17864BF0 for ; Tue, 5 Jul 2011 12:58:39 +0000 (UTC) Received: (qmail 78536 invoked by uid 500); 5 Jul 2011 12:58:39 -0000 Delivered-To: apmail-cxf-issues-archive@cxf.apache.org Received: (qmail 78233 invoked by uid 500); 5 Jul 2011 12:58:39 -0000 Mailing-List: contact issues-help@cxf.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cxf.apache.org Delivered-To: mailing list issues@cxf.apache.org Received: (qmail 78177 invoked by uid 99); 5 Jul 2011 12:58:38 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 05 Jul 2011 12:58:38 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=5.0 tests=ALL_TRUSTED,T_RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 05 Jul 2011 12:58:37 +0000 Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116]) by hel.zones.apache.org (Postfix) with ESMTP id B85FC43E85 for ; Tue, 5 Jul 2011 12:58:16 +0000 (UTC) Date: Tue, 5 Jul 2011 12:58:16 +0000 (UTC) From: "Srinivasa Kukatla (JIRA)" To: issues@cxf.apache.org Message-ID: <1187512580.535.1309870696751.JavaMail.tomcat@hel.zones.apache.org> In-Reply-To: <404745222.9895.1309557328431.JavaMail.tomcat@hel.zones.apache.org> Subject: [jira] [Commented] (CXF-3630) WSS4JIn Interceptor Issue MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/CXF-3630?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13059879#comment-13059879 ] Srinivasa Kukatla commented on CXF-3630: ---------------------------------------- Here is my requirement. I want all the messages leaving should have a Signed Saml Token, as well as the Timestamp which is signed. None of the body elements needs to be signed. We also want the wsdl to enforce the security policies. Here is the security policies configured in the WSDL. Please let me know, how do we achieve that. We have used WSS4JOutInterceptor and WSS4JInInterceptor, and configured, as shown in the previous message. > WSS4JIn Interceptor Issue > ------------------------------- > > Key: CXF-3630 > URL: https://issues.apache.org/jira/browse/CXF-3630 > Project: CXF > Issue Type: Bug > Components: WS-* Components > Affects Versions: 2.4 > Reporter: Srinivasa Kukatla > > WSS4JInInterceptor does not assert the policies. Hence I had to use the PolicyBasedWSS4JInInterceptor, but it does not have the constructor. Hence I had to add the constructor. Here is another problem: > I need the following requirement, Saml Assertion needs to be signed, Timestamp needs to be signed: > But, on the wss4jOutInterceptor, if I say Timestamp, SAMLTokenSigned, and Signature, the actions are mismatching. Hence i had to use only the first two actions. > > > > > > > > passwordCallbackRef > > > > > > > > > > > > But, on the WSS4JInInterceptor, I needed to configure 3 actions as shown below: > > > > > > > > > > > > -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira