cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stefan Pröls (JIRA) <j...@apache.org>
Subject [jira] [Commented] (CXF-6582) Support newer symmetric signature algorithms with WS-SecurityPolicy
Date Tue, 22 Sep 2015 11:57:04 GMT

    [ https://issues.apache.org/jira/browse/CXF-6582?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14902448#comment-14902448
] 

Stefan Pröls commented on CXF-6582:
-----------------------------------

But right that doesn't have any effect for me in 3.1.3.

See also CXF-6582 and CXF-5200. You can find an example WSDL illustrating the problem in my
comment to CXF-5200.

It _almost_ works with your latest changes in 3.1.3, but there are two problems remaining:

1. Basic256Sha256 in the AlgorithmSuite as no effect.
I can live with that as there are the ws-security.(a)symmetric.signature.algorithm properties
to set SHA-256 explicitly.

2. While the ws-security.(a)symmetric.signature.algorithm properties set the SignatureMethod
just fine, it does not influence the DigestMethods of the signatures' references. CXF keeps
using SHA-1 here, even when the SignatureMethod is set to HMAC-SHA256 using the ws-security.symmetric.signature.algorithm
property.


> Support newer symmetric signature algorithms with WS-SecurityPolicy
> -------------------------------------------------------------------
>
>                 Key: CXF-6582
>                 URL: https://issues.apache.org/jira/browse/CXF-6582
>             Project: CXF
>          Issue Type: Bug
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: 3.1.3, 3.0.7
>
>
> This task is to support using symmetric signature algorithms other than the default (HMAC-SHA1)
with WS-SecurityPolicy.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message