You are viewing a plain text version of this content. The canonical link for it is here.
Posted to java-dev@axis.apache.org by "Dimuthu Leelarathne (JIRA)" <ji...@apache.org> on 2010/12/23 06:55:00 UTC
[jira] Resolved: (RAMPART-278) PolicyBasedResultsValidator throws
exception when headers encrypted before signing.
[ https://issues.apache.org/jira/browse/RAMPART-278?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Dimuthu Leelarathne resolved RAMPART-278.
-----------------------------------------
Resolution: Fixed
Applied the patch to trunk. Revision 1052173
> PolicyBasedResultsValidator throws exception when headers encrypted before signing.
> -----------------------------------------------------------------------------------
>
> Key: RAMPART-278
> URL: https://issues.apache.org/jira/browse/RAMPART-278
> Project: Rampart
> Issue Type: Bug
> Components: rampart-core
> Reporter: todd wolff
> Assignee: Dimuthu Leelarathne
> Attachments: SignedEncryptedHeaders.patch
>
>
> PolicyBasedResultsValidator uses wsu:Id of signed elements to validate that headers were signed. If header was encrypted before signing, wsu:Id is id on EncryptedHeader element, which was detached from header by WSS4J and replaced with the decrypted header. Consequently the check fails and validator incorrectly throws an exception.
> Also RampartUtil excludes child text nodes when converting soap header blocks, i.e. a header block with a single child text node would be incorrectly converted to an empty header block. See attached patch for painless fix to both problems.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
---------------------------------------------------------------------
To unsubscribe, e-mail: java-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: java-dev-help@axis.apache.org