[AXIS2C-1024] Neethi does not support ExactlyOne to allow using OR when defining two tokens where only one or the other is desired - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: neethi, rampart
Labels:
None
Environment:
Windows XP.

Description

The spec I'm looking at is http://specs.xmlsoap.org/ws/2005/07/securitypolicy/ws-securitypolicy.pdf in section 4.1.1.

The spec shows how to OR things together in the policy, but when I tried that it in rampart/c it didn't work. Here's what I tried (showing just the SignedSupportingTokens:

<sp:SignedSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<wsp:ExactlyOne>
<sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
<sp:SamlToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
</wsp:ExactlyOne>
</wsp:Policy>
</sp:SignedSupportingTokens>

This should accept either UsernameToken or SamlToken.

Also tried the following without success:

<sp:SignedSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<wsp:All>
<wsp:ExactlyOne>
<sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
<sp:SamlToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
</wsp:ExactlyOne>
</wsp:All>
</wsp:Policy>
</sp:SignedSupportingTokens>

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Dave Meier

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 29/Feb/08 05:56

Updated:: 07/Apr/20 17:45