Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-4789

EndorsingSupportingTokens do not respect ProtectTokens assertion from paired binding policy

    Details

    • Estimated Complexity:
      Unknown

      Description

      I've a wsdl containing both a SymmetricBinding and an EndorsingSupportingTokens policies. The binding one specifies ProtectTokens assertion. As a consequence as per WS-SecurityPolicy 1.2 Section 8.9, the signature for the endorsing supporting token should sign both the first signature and the endorsing token, while it seems the latter is currently not covered.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                coheigea Colm O hEigeartaigh
                Reporter:
                asoldano Alessio Soldano
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: