[WSS-263] Store secret key from signature processor - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.5.10
Fix Version/s: 1.6, 1.5.11
Component/s: WSS4J Axis Integration
Labels:
None

Description

When the Signature Processor uses a secret key extracted from a SAML Assertion to verify a signature it does not store the secret key, meaning that the calling code is not able to use the secret key. This causes a problem in WS-Trust, where an endpoint cannot use the secret key as the protection token to communicate with the client.

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Colm O hEigeartaigh

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 07/Jan/11 17:25

Updated:: 10/Jan/11 12:49

Resolved:: 10/Jan/11 12:48