Details
-
Bug
-
Status: Resolved
-
Critical
-
Resolution: Invalid
-
1.2
-
None
-
Axis2 1.2 , Rampart-Head , Windows XP, Apache Tomcat 5.5.23
Description
When trying to encrypt the username/password of the UsernameToken assertion, by using the SignedEncryptedSupportingTokens assertion , I get no result - username and password are sent in plaintext.
This problem can be very easily reproduced by changing the "SignedSupportingTokens" assertion in rampart's sample01, to "SignedEncryptedSupportingTokens". This is really, core, critical functionality. Thank you very much.
Regards,
Angel