cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Colm O hEigeartaigh (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (CXF-7086) Dynamically load signature validation keys using KeyName
Date Wed, 29 Mar 2017 09:25:41 GMT

    [ https://issues.apache.org/jira/browse/CXF-7086?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15946799#comment-15946799
] 

Colm O hEigeartaigh commented on CXF-7086:
------------------------------------------

Patch applied with some modifications + a test added. I moved the signature key name alias
map from SecurityConstants to SignatureProperties.

> Dynamically load signature validation keys using KeyName
> --------------------------------------------------------
>
>                 Key: CXF-7086
>                 URL: https://issues.apache.org/jira/browse/CXF-7086
>             Project: CXF
>          Issue Type: New Feature
>          Components: JAX-RS Security
>            Reporter: Hugo Trippaers
>            Assignee: Colm O hEigeartaigh
>            Priority: Minor
>             Fix For: 3.1.11, 3.2.0
>
>
> The current implementation of handling incoming messages with a KeyName identifier is
to rely on a single "default" key. The SignatureValidationKey. However it is possible to have
multiple different KeyNames and the expected behaviour is to select the right certificate
based on the KeyName.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

Mime
View raw message