You are viewing a plain text version of this content. The canonical link for it is here.

Posted to fx-dev@ws.apache.org by Richard Gregory <ri...@gsf.de> on 2005/12/16 17:18:13 UTC

Time to live of UsernameToken Timestamp

Hi,

I know that if a timestamp element is included in the security header it 
is checked against a time to live (default 5 minutes). Is there anything 
built into wss4j to check the created timestamp of a UsernameToken in 
the same way (as recommended by the OASIS spec), or is it up to users to 
implement this if required? I had a look though the documentation but I 
couldn't find anything, so I'm guessing the latter, but I just thought 
I'd check before I implmented this myself.

Thanks,

Richard.

---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org