Uploaded image for project: 'WSS4J'
  1. WSS4J
  2. WSS-484

Streaming code can't process a Key reference pointing to an EncryptedData element

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 2.0.0
    • None
    • None

    Description

      The streaming code fails when confronted with a security header with contains an EncrypteData structure in the security header (encrypted SAML Token), and a Signature KeyInfo beneath it that references the ID of the Assertion.

      Sample header:

      https://paste.apache.org/2weX

      Also, see the @Ignore'd test here:

      http://svn.apache.org/viewvc/cxf/trunk/services/sts/systests/basic/src/test/java/org/apache/cxf/systest/sts/asymmetric/StaxAsymmetricBindingTest.java?view=markup

      Attachments

        Activity

          People

            giger Marc Giger
            coheigea Colm O hEigeartaigh
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: