cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Colm O hEigeartaigh (JIRA)" <>
Subject [jira] [Updated] (CXF-5133) CXF STS renewed token not itself renewable.
Date Wed, 17 Jul 2013 13:30:49 GMT


Colm O hEigeartaigh updated CXF-5133:

    Fix Version/s:     (was: 2.6.9)
> CXF STS renewed token not itself renewable.
> -------------------------------------------
>                 Key: CXF-5133
>                 URL:
>             Project: CXF
>          Issue Type: Bug
>          Components: STS
>    Affects Versions: 2.7.5
>         Environment: Windows XP, Java 1.7
>            Reporter: Ethan Wallwork
>            Assignee: Colm O hEigeartaigh
>             Fix For: 2.7.6, 2.6.10
> When renewing a security token (a SAML assertion in my test case) the returned token
cannot be renewed again (nor can the original).  This is true even if the <Renewing/>
element is present in the renewal RST message.
> It seems that the SAMLTokenRenewer class does not put the STSConstants.TOKEN_RENEWING_ALLOW
and STSConstants.TOKEN_RENEWING_ALLOW_AFTER_EXPIRY properties on the SecurityTOken placed
in the token store, which are required for renewal to later take place.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message