[CXF-4978] Only encrypt an issued token if we have a matching key - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.7.4
Fix Version/s: 2.7.5
Component/s: STS
Labels:
None

Estimated Complexity:
Unknown

Description

When the "encryptIssuedToken" boolean is set on the TokenIssueOperation in the STS, an exception is thrown if a public key is not found to encrypt the token. It first checks for a token per service (via the AppliesTo address), and then falls back to the generic setting on the STS.

This improvement only encrypts the token if a matching key can be found. In other words, so long as the STS is not configured with a generic encryption name.

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Colm O hEigeartaigh

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 23/Apr/13 10:12

Updated:: 14/Aug/13 15:50

Resolved:: 23/Apr/13 10:20