CXF
  1. CXF
  2. CXF-4274

Support useReqSigCert for encrypting the responses from JAX-RS endpoints

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.5.4, 2.6.1
    • Component/s: JAX-RS Security
    • Labels:
      None
    • Estimated Complexity:
      Unknown

      Description

      WS endpoints can get a ws.security.encryption.username property set to 'useReqSigCert', meaning that the specific client certificate use to create a signature of the payload needs to be used for encrypting the outbound payload.

      RS endpoints need to support this mode too. Additionally, the in signature and encryption interceptors on both the client and server ends need to default (two-way POSTs) to using the encryption properties for the signature validation and the signature properties for the decryption, in line with the way WS endpoints operate.

        People

        • Assignee:
          Sergey Beryozkin
          Reporter:
          Sergey Beryozkin
        • Votes:
          0 Vote for this issue
          Watchers:
          0 Start watching this issue

          Dates

          • Created:
            Updated:
            Resolved:

            Development