cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stefan Pröls (JIRA) <>
Subject [jira] [Commented] (CXF-6582) Support newer symmetric signature algorithms with WS-SecurityPolicy
Date Tue, 22 Sep 2015 11:57:04 GMT


Stefan Pröls commented on CXF-6582:

But right that doesn't have any effect for me in 3.1.3.

See also CXF-6582 and CXF-5200. You can find an example WSDL illustrating the problem in my
comment to CXF-5200.

It _almost_ works with your latest changes in 3.1.3, but there are two problems remaining:

1. Basic256Sha256 in the AlgorithmSuite as no effect.
I can live with that as there are the ws-security.(a)symmetric.signature.algorithm properties
to set SHA-256 explicitly.

2. While the ws-security.(a)symmetric.signature.algorithm properties set the SignatureMethod
just fine, it does not influence the DigestMethods of the signatures' references. CXF keeps
using SHA-1 here, even when the SignatureMethod is set to HMAC-SHA256 using the ws-security.symmetric.signature.algorithm

> Support newer symmetric signature algorithms with WS-SecurityPolicy
> -------------------------------------------------------------------
>                 Key: CXF-6582
>                 URL:
>             Project: CXF
>          Issue Type: Bug
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: 3.1.3, 3.0.7
> This task is to support using symmetric signature algorithms other than the default (HMAC-SHA1)
with WS-SecurityPolicy.

This message was sent by Atlassian JIRA

View raw message