ws-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Colm O hEigeartaigh <cohei...@apache.org>
Subject Re: Soap Envelope part signature verification
Date Wed, 15 May 2013 15:28:19 GMT
It doesn't make any sense to sign the entire SOAP Envelope. You typically
sign the SOAP Body and a number of SOAP Headers such as WS-Addressing (if
using), along with some specific security headers (Timestamp,
UsernameToken, etc.).

Colm.

On Wed, May 15, 2013 at 4:03 PM, Oleg Korneychuk <albus.ua@gmail.com> wrote:

> Hello,
>
> I have created two tests. One of them signs Soap Body part and
> successfully verifies them. Another one signs Soap Envelope part and fails
> during verification.
> Tests are identical at all except of WSEncryptionPart instances creation.
>
> Please, advise me what I am doing wrong.
> Sources are attached.
>
> Thank you.
>
> Oleg Korneychuk.
> Java Developer.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
> For additional commands, e-mail: dev-help@ws.apache.org
>



-- 
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com

Mime
View raw message