You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ws.apache.org by "ASF GitHub Bot (JIRA)" <ji...@apache.org> on 2015/06/16 14:31:00 UTC
[jira] [Commented] (WSS-541) No support for signing and encrypting
attachments while using derived keys
[ https://issues.apache.org/jira/browse/WSS-541?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14587951#comment-14587951 ]
ASF GitHub Bot commented on WSS-541:
------------------------------------
GitHub user spark404 opened a pull request:
https://github.com/apache/wss4j/pull/1
WSS-541 Copy the attachment handing code from the sign/encrypt
To the derived key versions
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/spark404/wss4j WSS-541
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/wss4j/pull/1.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #1
----
commit 40e5cf8dbfde6210e408a433be735dbe0d51faf0
Author: Hugo Trippaers <ht...@schubergphilis.com>
Date: 2015-06-16T12:27:02Z
WSS-541 Copy the attachment handing code from the sign/encrypt routines to the derived key versions
----
> No support for signing and encrypting attachments while using derived keys
> --------------------------------------------------------------------------
>
> Key: WSS-541
> URL: https://issues.apache.org/jira/browse/WSS-541
> Project: WSS4J
> Issue Type: Bug
> Components: WSS4J Core
> Affects Versions: 2.1.1
> Reporter: Hugo Trippaers
> Assignee: Colm O hEigeartaigh
> Fix For: 2.1.2
>
>
> When configuring a signing and encrypting policy in CXF and using derived keys the code throws the following exception:
> Caused by: org.apache.wss4j.common.ext.WSSecurityException: Cannot setup signature data structure
> Original Exception was org.apache.wss4j.common.ext.WSSecurityException: no attachment callbackhandler supplied
> at org.apache.wss4j.dom.message.WSSecSignatureBase.addReferencesToSign(WSSecSignatureBase.java:204)
> at org.apache.wss4j.dom.message.WSSecDKSign.addReferencesToSign(WSSecDKSign.java:189)
> at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.doSignatureDK(SymmetricBindingHandler.java:732)
> at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.doSignature(SymmetricBindingHandler.java:757)
> at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.doSignBeforeEncrypt(SymmetricBindingHandler.java:342)
> at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.handleBinding(SymmetricBindingHandler.java:126)
> at org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JOutInterceptor$PolicyBasedWSS4JOutInterceptorInternal.handleMessageInternal(PolicyBasedWSS4JOutInterceptor.java:174)
> at org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JOutInterceptor$PolicyBasedWSS4JOutInterceptorInternal.handleMessage(PolicyBasedWSS4JOutInterceptor.java:108)
> at org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JOutInterceptor$PolicyBasedWSS4JOutInterceptorInternal.handleMessage(PolicyBasedWSS4JOutInterceptor.java:95)
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org