You are viewing a plain text version of this content. The canonical link for it is here.

Posted to java-dev@axis.apache.org by "Suresh Attanayake (JIRA)" <ji...@apache.org> on 2013/09/05 08:29:52 UTC

[jira] [Commented] (RAMPART-287) Supporting Tokens Not Encrypted When Protection Order is Encrypt Before Signing

    [ https://issues.apache.org/jira/browse/RAMPART-287?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13758820#comment-13758820 ] 

Suresh Attanayake commented on RAMPART-287:
-------------------------------------------

Yes, I debugged the code and found that encrypting is handled even before the supporting tokens are processed. I will create a patch to fix this. 
                
> Supporting Tokens Not Encrypted When Protection Order is Encrypt Before Signing
> -------------------------------------------------------------------------------
>
>                 Key: RAMPART-287
>                 URL: https://issues.apache.org/jira/browse/RAMPART-287
>             Project: Rampart
>          Issue Type: Bug
>          Components: rampart-core
>    Affects Versions: 1.5
>            Reporter: todd wolff
>         Attachments: service.policy2.xml, service.policy.xml
>
>
> When one of the encrypted supporting token assertions is used and protection order is encrypt before signing, the tokens are not encrypted.  The binding against which this was tested was asymmetric. 

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

---------------------------------------------------------------------
To unsubscribe, e-mail: java-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: java-dev-help@axis.apache.org