cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Syed Abdul Wadood (JIRA)" <j...@apache.org>
Subject [jira] [Created] (CXF-5083) Failure in checkEndorsed() when timestamp is not signed with EndorsingSupportingTokens
Date Mon, 17 Jun 2013 14:13:20 GMT
Syed Abdul Wadood created CXF-5083:
--------------------------------------

             Summary: Failure in checkEndorsed() when timestamp is not signed with EndorsingSupportingTokens
                 Key: CXF-5083
                 URL: https://issues.apache.org/jira/browse/CXF-5083
             Project: CXF
          Issue Type: Bug
          Components: WS-* Components
    Affects Versions: 2.7.5
         Environment: All platforms
            Reporter: Syed Abdul Wadood
             Fix For: 2.7.5


In AbstractSupportingTokenPolicyValidator.java, the checkEndorsed() method is failing when
TLS is used and timestamp is not signed.  In my scenario, I am using EndorsingSupportingTokens
with SymmetricBinding and the client request is sent over SSL, so TLS is used. The problem
is the SOAP request generated does not have timestamp signed, it only has <ds:Signature>
signed, but the checkEndorsed routine is failing as it requires timestamp to be signed with
TLS is in use.

I am not sure if this problem will be fixed by CXF-5056.


--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message