ws-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Frank Henningsen (JIRA)" <>
Subject [jira] [Commented] (WSS-645) using WSS4j to genrate WS-SecurityPolicy without CXF
Date Thu, 07 Mar 2019 14:58:00 GMT


Frank Henningsen commented on WSS-645:

Thx for the explanation Colm :) 

I understand your point of view and will look into the streaming WS-SecurityPolicy implementation,
is there a testcase you can recommend to look into the solution you propose? 

br Frank

> using WSS4j to genrate WS-SecurityPolicy without CXF
> ----------------------------------------------------
>                 Key: WSS-645
>                 URL:
>             Project: WSS4J
>          Issue Type: Improvement
>          Components: WSS4J Core
>    Affects Versions: 2.2.2
>            Reporter: Frank Henningsen
>            Assignee: Colm O hEigeartaigh
>            Priority: Minor
>         Attachments: skat-b2b-x509-policy.xml
> Dear Team WSS4J
> i have a task to sign and encrypt webservices that use a WS-SecurityPolicy (see attachmant)
in a SAP environment where sending/receiving SOAP request is not part of the solution, i only
need to transform/decorate the SOAP requests with WSS for webservices that use a WS-SecurityPolicy.
I would have liked to create a solution that given a WS-SecurityPolicy could use WSS4J to
generate the appropriate WSS header and body, but for reasons i dont understand this is only
possible using CXF.
> CXF use PolicyOutInterceptor (see [] to decorate
SOAP requests. 
> To me it seems strange that WSS4J has implemented the WS-SecurityPolicy support in another
framework (CXF) so i propose that the WS-SecurityPolicy implementation also should be supported
by the core WSS4J core :)

This message was sent by Atlassian JIRA

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message