Uploaded image for project: 'WSS4J'
  1. WSS4J
  2. WSS-406

Add the ability to define which algorithms are acceptable when processing a security header

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.6.7
    • Fix Version/s: 1.6.8
    • Component/s: None
    • Labels:
      None

      Description

      This task is to add the ability to define which algorithms are acceptable when processing a security header. In WS-SecurityPolicy, you can define an "AlgorithmSuite" (e.g. sp:Basic128) which describes which algorithms must be used. Currently there is no way to enforce this in WSS4J.

      An AlgorithmSuite class will be added to WSS4J, which a third party library can populate. This will hold acceptable values for things like signature method, digest, c14n algorithms etc., as well as key sizes, and encryption symmetric and key wrapping algorithms etc. If WSS4J encounters an Element that does not match one of these values then an exception is thrown.

        Attachments

          Activity

            People

            • Assignee:
              coheigea Colm O hEigeartaigh
              Reporter:
              coheigea Colm O hEigeartaigh
            • Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: