[WSS-406] Add the ability to define which algorithms are acceptable when processing a security header - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.6.7
Fix Version/s: 1.6.8
Component/s: None
Labels:
None

Description

This task is to add the ability to define which algorithms are acceptable when processing a security header. In WS-SecurityPolicy, you can define an "AlgorithmSuite" (e.g. sp:Basic128) which describes which algorithms must be used. Currently there is no way to enforce this in WSS4J.

An AlgorithmSuite class will be added to WSS4J, which a third party library can populate. This will hold acceptable values for things like signature method, digest, c14n algorithms etc., as well as key sizes, and encryption symmetric and key wrapping algorithms etc. If WSS4J encounters an Element that does not match one of these values then an exception is thrown.

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Colm O hEigeartaigh

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 01/Oct/12 15:56

Updated:: 04/Dec/12 12:16

Resolved:: 26/Nov/12 10:02