Uploaded image for project: 'WSS4J'
  1. WSS4J
  2. WSS-471

AsymmetricBinding validation without IncludeTimestamp doesn't work

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Not A Problem
    • None
    • 2.0.0
    • None
    • None

    Description

      AsymmetricBinding validation without IncludeTimestamp doesn't work with the error:

      Original Exception was org.apache.wss4j.policy.WSSPolicyException: Assertion

      {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}

      X509Token not satisfied

      It appears that the Initiator X.509 Token (which is included in the request) is only marked as a SupportingToken, and hence does not get asserted. Adding in an IncludeTimestamp policy makes the test pass.

      Attachments

        Activity

          People

            giger Marc Giger
            coheigea Colm O hEigeartaigh
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: