Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-6443

CXF streaming-enabled web service cannot process MTOM/XOP-optimized content within a CipherValue element

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.0.5
    • Fix Version/s: 3.2.5
    • Component/s: WS-* Components
    • Labels:
      None
    • Estimated Complexity:
      Unknown

      Description

      The DOM-based fix for this issue was implemented for CXF-6409

      When a CXF WS-Security streaming-enabled web service endpoint is configured to use WS-Security and MTOM, CXF cannot handle requests from .NET and Metro clients because it cannot process xop:Include elements that are children of enc:CipherValue elements, as both of these clients will optimize any large encrypted (base64-encoded binary) content by serializing it as a MIME part.

      For example, when a Metro MTOM-optimized WS-Security-based request is sent to a CXF endpoint, the following exception is thrown within org.apache.xml.security.stax.impl.processor.input.AbstractDecryptInputProcessor$DecryptionThread.run():

      org.apache.xml.security.exceptions.XMLSecurityException: Unexpected StAX-Event: START_ELEMENT

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                coheigea Colm O hEigeartaigh
                Reporter:
                dallasvaughan Dallas Vaughan
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: