Uploaded image for project: 'Rampart'
  1. Rampart
  2. RAMPART-146

The exact elements that are equired to be encrypted are not validated

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 1.4
    • None
    • None

    Description

      Hi everybody,
      currently I am researching how Rampart is validating and verifying the secured artifacts. Let me give you a sample scenario. Let's say we have a WS which policy defines that a specific <sp:EncryptedElements/> should be encrypted (corresponding to a given XPath expression). I am interested in understanding the mechanism that is used to verify that the incoming message has encrypted exactly that <sp:EncryptedElements/> with the given specific XPath expression, but not something else.

      At the moment seems like we do not validate the exact elements that are required to be encrypted.

      Ruchith commented out:
      IMHO we will have to improve the org.apache.ws.security.processor.ReferenceListProcessor to include the decrypted element information (in addition to the ref URI) for rampart to be able to validate the encrypted parts correctly.

      Attachments

        Issue Links

          is blocked by

          Improvement - An improvement or enhancement to an existing feature or task. WSS-104 Reference List processor should provide more information

          • Major - Major loss of function.
          • Closed

          Activity

            People

              ruchith Ruchith B. Gunaratne
              dobri Dobri Emilov Kitipov
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: