cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Colm O hEigeartaigh (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (CXF-5305) STSClient does not send Renewing element in renewal RequestSecurityToken message
Date Fri, 27 Sep 2013 13:54:04 GMT

     [ https://issues.apache.org/jira/browse/CXF-5305?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Colm O hEigeartaigh updated CXF-5305:
-------------------------------------

    Fix Version/s: 2.7.8
    
> STSClient does not send Renewing element in renewal RequestSecurityToken message
> --------------------------------------------------------------------------------
>
>                 Key: CXF-5305
>                 URL: https://issues.apache.org/jira/browse/CXF-5305
>             Project: CXF
>          Issue Type: Bug
>          Components: STS
>    Affects Versions: 2.7.7
>            Reporter: Ethan Wallwork
>            Assignee: Colm O hEigeartaigh
>             Fix For: 2.7.8
>
>
> STSClient does not add a Renewing element to the RequestSecurityToken message when performing
a renew, regardless of the value of sendRenewing (or allowRenewing or allowRenewingAfterExpiry).
> This does not prevent prevent a renewal from being renewed because that is allowed by
default, but it does prevent a renewal from being renewed after expiry (OK=true attribute)
when that option is enabled.
> The client is also unable to prevent a renewal from being renewable (using the Allow=false
attribute) however I'm not sure the client would ever attempt that anyway since the same restriction
would be on the originally issued token so you would never get that far.
> See AbstractSTSClient#renew(SecurityToken) line 955 which I believe needs code similar
to AbstractSTSClient#issue(String,String,String,String) lines 745-755.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message