You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fx-dev@ws.apache.org by Richard Gregory <ri...@gsf.de> on 2005/12/16 17:18:13 UTC
Time to live of UsernameToken Timestamp
Hi,
I know that if a timestamp element is included in the security header it
is checked against a time to live (default 5 minutes). Is there anything
built into wss4j to check the created timestamp of a UsernameToken in
the same way (as recommended by the OASIS spec), or is it up to users to
implement this if required? I had a look though the documentation but I
couldn't find anything, so I'm guessing the latter, but I just thought
I'd check before I implmented this myself.
Thanks,
Richard.
---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org