[RAMPART-119] Invalid behavior when empty <sp:SignedParts/> element present in the policy - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.3
Fix Version/s: 1.5.1
Component/s: rampart-core
Labels:
None

Description

According to the ws - security policy specification 1.1 , 5.1.1 Signed Parts Assertion

This assertion specifies the parts of the message that need integrity protection. If no child elements are specified, all message headers targeted at the UltimateReceiver role [SOAP12] or actor [SOAP11] and the body of the message MUST be integrity protected.

So for an empty signed parts element, we have to sign all the message headers. At current we don't sign any header if signed parts element is empty.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

RAMPART-119.patch
21/Dec/10 12:35
6 kB
Thilina Mahesh Buddhika
RAMPART119.patch
13/Sep/09 18:12
7 kB
Thilina Mahesh Buddhika

Activity

People

Assignee:: Selvaratnam Uthaiyashankar

Reporter:: Nandana Mihindukulasooriya

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 05/Dec/07 06:20

Updated:: 21/Dec/10 13:06

Resolved:: 21/Dec/10 13:06