We are upgrading from Axis2 1.5.5/ Rampart 1.5.11 to axis2 1.6.2/Rampart1.6.2. Here we have seen that the USERNAME_TOKEN_UNKNOWN has been deprecated and hence there is no backward compatibility. At this late stage we cannot implement the code to provide passwords at the server password callback class. So we have a problem.
The server password callback class is asking for the password. We have designed the services such that for username token authentication we are sending the request to another directory store for authentication.
Is there a way to process this without giving the password at server side. Can we configure custom validators to pass the authentication for USERNAME_TOKEN without validating the passwords?
If yes can you tell us how to write/configure custom validators?
Also, if there is any other solution do let us know.