[CXF-3960] Patch for InitiatorSignatureToken Support in WS-Policy definition - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.4.4
Fix Version/s: 2.4.5, 2.5.1
Component/s: WS-* Components
Labels:
- newbie
- patch
- security
Environment:

CXF supported environments

Estimated Complexity:
Unknown

Description

This patch adds support for InitiatorSignatureToken assertion. Support for IntiatorEncryptionToken and corresponding recipient tokens will be added subsequently.
Here's an example of supported policy definition:

 
<sp:AsymmetricBinding>
  <wsp:Policy>
    <sp:InitiatorSignatureToken>
      <wsp:Policy>
	<sp:X509Token sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient">			
	  <wsp:Policy>
	    <sp:RequireThumbprintReference/>
	    <sp:WssX509V3Token10/>
	  </wsp:Policy>	
	</sp:X509Token>
	</wsp:Policy>
    </sp:InitiatorSignatureToken>
    <sp:RecipientToken>
      <wsp:Policy>
	<sp:X509Token sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Always">	
	  <wsp:Policy>
	    <sp:RequireThumbprintReference/>
	    <sp:WssX509V3Token10/>
	  </wsp:Policy>								
	</sp:X509Token>
      </wsp:Policy>
    </sp:RecipientToken>
    <sp:AlgorithmSuite>
      <wsp:Policy>
	<sp:TripleDesRsa15/>			
	</wsp:Policy>
    </sp:AlgorithmSuite>
    <sp:Layout>
      <wsp:Policy>
	<sp:Lax />
      </wsp:Policy>
    </sp:Layout>		
    <sp:IncludeTimestamp/>			
    <sp:OnlySignEntireHeadersAndBody />						
  </wsp:Policy>					
</sp:AsymmetricBinding>

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

patch.txt
07/Dec/11 16:32
23 kB
Vinay Penmatsa

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Vinay Penmatsa

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 06/Dec/11 18:53

Updated:: 19/Dec/11 16:15

Resolved:: 08/Dec/11 15:16