You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Vinay Penmatsa (Updated) (JIRA)" <ji...@apache.org> on 2011/12/07 17:16:40 UTC

[jira] [Updated] (CXF-3960) Patch for InitiatorSignatureToken Support in WS-Policy definition

     [ https://issues.apache.org/jira/browse/CXF-3960?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Vinay Penmatsa updated CXF-3960:
--------------------------------

          Environment: CXF supported environments  (was: CXF supported environment)
    Affects Version/s:     (was: 2.4.5)
                       2.4.4
              Summary: Patch for InitiatorSignatureToken Support in WS-Policy definition  (was: InitiatorSignatureToken Support in WS-Policy definition)
    
> Patch for InitiatorSignatureToken Support in WS-Policy definition
> -----------------------------------------------------------------
>
>                 Key: CXF-3960
>                 URL: https://issues.apache.org/jira/browse/CXF-3960
>             Project: CXF
>          Issue Type: Improvement
>          Components: WS-* Components
>    Affects Versions: 2.4.4
>         Environment: CXF supported environments
>            Reporter: Vinay Penmatsa
>              Labels: newbie, patch, security
>             Fix For: 2.4.5
>
>         Attachments: patch.txt
>
>
> This patch adds support for InitiatorSignatureToken assertion. Support for IntiatorEncryptionToken and corresponding recipient tokens will be added subsequently.
> Here's an example of supported policy definition:
> {code:xml} 
> <sp:AsymmetricBinding>
>   <wsp:Policy>
>     <sp:InitiatorSignatureToken>
>       <wsp:Policy>
> 	<sp:X509Token sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient">			
> 	  <wsp:Policy>
> 	    <sp:RequireThumbprintReference/>
> 	    <sp:WssX509V3Token10/>
> 	  </wsp:Policy>	
> 	</sp:X509Token>
> 	</wsp:Policy>
>     </sp:InitiatorSignatureToken>
>     <sp:RecipientToken>
>       <wsp:Policy>
> 	<sp:X509Token sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Always">	
> 	  <wsp:Policy>
> 	    <sp:RequireThumbprintReference/>
> 	    <sp:WssX509V3Token10/>
> 	  </wsp:Policy>								
> 	</sp:X509Token>
>       </wsp:Policy>
>     </sp:RecipientToken>
>     <sp:AlgorithmSuite>
>       <wsp:Policy>
> 	<sp:TripleDesRsa15/>			
> 	</wsp:Policy>
>     </sp:AlgorithmSuite>
>     <sp:Layout>
>       <wsp:Policy>
> 	<sp:Lax />
>       </wsp:Policy>
>     </sp:Layout>		
>     <sp:IncludeTimestamp/>			
>     <sp:OnlySignEntireHeadersAndBody />						
>   </wsp:Policy>					
> </sp:AsymmetricBinding>
> {code}

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira