You are viewing a plain text version of this content. The canonical link for it is here.
Posted to java-commits@axis.apache.org by ve...@apache.org on 2017/01/29 15:59:34 UTC
svn commit: r1780817 [1/9] - in
/axis/axis2/java/rampart/branches/RAMPART-252: ./ apidocs/ code-coverage/
etc/ legal/ modules/distribution/ modules/distribution/src/
modules/documentation/ modules/rampart-core/
modules/rampart-core/src/main/java/META-I...
Author: veithen
Date: Sun Jan 29 15:59:32 2017
New Revision: 1780817
URL: http://svn.apache.org/viewvc?rev=1780817&view=rev
Log:
Merge latest changes from trunk.
Added:
axis/axis2/java/rampart/branches/RAMPART-252/LICENSE
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/LICENSE
axis/axis2/java/rampart/branches/RAMPART-252/NOTICE
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/NOTICE
axis/axis2/java/rampart/branches/RAMPART-252/README
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/README
axis/axis2/java/rampart/branches/RAMPART-252/apidocs/ (props changed)
- copied from r1780812, axis/axis2/java/rampart/trunk/apidocs/
axis/axis2/java/rampart/branches/RAMPART-252/code-coverage/ (props changed)
- copied from r1780812, axis/axis2/java/rampart/trunk/code-coverage/
axis/axis2/java/rampart/branches/RAMPART-252/etc/
- copied from r1780812, axis/axis2/java/rampart/trunk/etc/
axis/axis2/java/rampart/branches/RAMPART-252/legal/esapi-LICENSE.txt
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/legal/esapi-LICENSE.txt
axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/src/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/distribution/src/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/handler/RampartUsernameTokenValidator.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-core/src/main/java/org/apache/rampart/handler/RampartUsernameTokenValidator.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/policy/builders/KerberosConfigBuilder.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-core/src/main/java/org/apache/rampart/policy/builders/KerberosConfigBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/policy/model/KerberosConfig.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-core/src/main/java/org/apache/rampart/policy/model/KerberosConfig.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/resources/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-core/src/main/resources/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/test/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-core/src/test/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/main/java/org/apache/axis2/integration/TestConstants.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/main/java/org/apache/axis2/integration/TestConstants.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rampart/KerberosDelegationService.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/java/org/apache/rampart/KerberosDelegationService.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rampart/KerberosDelegationServiceValidator.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/java/org/apache/rampart/KerberosDelegationServiceValidator.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rampart/RampartKerberosTest.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/java/org/apache/rampart/RampartKerberosTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rampart/util/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/java/org/apache/rampart/util/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/kerberos/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/resources/kerberos/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/1.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/resources/rahas/1.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/3.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/resources/rahas/3.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rampart/kerberos/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/resources/rampart/kerberos/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rampart/policy/35.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/resources/rampart/policy/35.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rampart/services-35.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-integration/src/test/resources/rampart/services-35.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/KerberosToken.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/KerberosToken.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/EncryptionTokenBuilder.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/EncryptionTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/KerberosTokenBuilder.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/KerberosTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/SignatureTokenBuilder.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/SignatureTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/EncryptionTokenBuilder.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/EncryptionTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/KerberosTokenBuilder.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/KerberosTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/SignatureTokenBuilder.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/SignatureTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/resources/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/main/resources/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/test/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-policy/src/test/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/pom.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-samples/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/src/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-samples/src/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/test-resources/policy-symm-binding-fault1.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-tests/test-resources/policy-symm-binding-fault1.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/test-resources/policy/rampart-hashed-password.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-tests/test-resources/policy/rampart-hashed-password.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/test-resources/policy/rampart-plaintext-password.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-tests/test-resources/policy/rampart-plaintext-password.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/test-resources/policy/soapmessage12.xml
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-tests/test-resources/policy/soapmessage12.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/resources/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/main/resources/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/impl/util/CommonUtilTest.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/test/java/org/apache/rahas/impl/util/CommonUtilTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/AbstractTestCase.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/AbstractTestCase.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/TestCallbackHandler.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/TestCallbackHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/TestSAMLCallbackHandler.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/TestSAMLCallbackHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/TestSTSClient.java
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/TestSTSClient.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/resources/log4j.properties
- copied unchanged from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/test/resources/log4j.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/resources/repo/
- copied from r1780812, axis/axis2/java/rampart/trunk/modules/rampart-trust/src/test/resources/repo/
axis/axis2/java/rampart/branches/RAMPART-252/src/
- copied from r1780812, axis/axis2/java/rampart/trunk/src/
Removed:
axis/axis2/java/rampart/branches/RAMPART-252/build.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/documentation/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/META-INF/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/errors.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/handler/WSDoAllHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/handler/WSDoAllReceiver.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/handler/WSDoAllSender.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/handler/config/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/util/HandlerParameterDecoder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/main/java/org/apache/axis2/integration/UtilServer.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/main/java/org/apache/axis2/integration/UtilServerBasedTestCase.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/main/java/org/apache/axis2/security/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/main/resources/ping/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/axis2/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/issuer.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/rahas-sec.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/saml.s1.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/samlIssuer.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/security/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/META-INF/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/basic/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/build.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rampart/handler/config/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/META-INF/
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/errors.properties
axis/axis2/java/rampart/branches/RAMPART-252/release-docs/
Modified:
axis/axis2/java/rampart/branches/RAMPART-252/ (props changed)
axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/ (props changed)
axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/bin.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/src.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/ExtendedPolicyValidatorCallbackHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/NonceCache.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/PolicyBasedResultsValidator.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/RampartEngine.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/RampartMessageData.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/builder/AsymmetricBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/builder/BindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/builder/TransportBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/handler/PostDispatchVerificationHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/policy/RampartPolicyBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/policy/RampartPolicyData.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/policy/SupportingPolicyData.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/policy/builders/RampartConfigBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/policy/model/RampartConfig.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/util/Axis2Util.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/util/RampartUtil.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/resources/org/apache/rampart/errors.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/main/java/org/apache/rahas/PWCallback.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/main/java/org/apache/rahas/TestClient.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAML2TokenCertForHoKTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAML2TokenTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAML2TokenUTForBearerTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenAttributeTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenCertForHoKTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenCertForHoKV1205Test.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenUTForBearerTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenUTForBearerV1205Test.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenUTForHoKTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenUTForHoKV1205Test.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rahas/RahasSAMLTokenV1205Test.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/java/org/apache/rampart/RampartTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/conf/axis2.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/log4j.properties
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/s1-services.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/s3-services.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-integration/src/test/resources/rahas/s5-services.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-mar/ (props changed)
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-mar/module.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-mar/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/Constants.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/SP11Constants.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/SP12Constants.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/SPConstants.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/AbstractConfigurableSecurityAssertion.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/AbstractSecurityAssertion.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/AsymmetricBinding.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/ContentEncryptedElements.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/RequiredElements.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/RequiredParts.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/SignedEncryptedElements.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/SignedEncryptedParts.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/SupportingToken.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/SymmetricBinding.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/TransportBinding.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/Trust10.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/Trust13.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy/model/UsernameToken.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/AlgorithmSuiteBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/AsymmetricBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/InitiatorTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/IssuedTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/LayoutBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/ProtectionTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/RecipientTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/SignedPartsBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/SupportingTokensBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/SymmetricBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/TransportBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/TransportTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/UsernameTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/WSS10Builder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/WSS11Builder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy11/builders/X509TokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/AlgorithmSuiteBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/AsymmetricBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/HttpsTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/InitiatorTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/IssuedTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/LayoutBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/ProtectionTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/RecipientTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/SignedPartsBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/SupportingTokensBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/SymmetricBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/TransportBindingBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/TransportTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/UsernameTokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/WSS10Builder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/WSS11Builder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-policy/src/main/java/org/apache/ws/secpolicy12/builders/X509TokenBuilder.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/ (props changed)
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/README.txt
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/keys/service.jks
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/build.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample-tomcat/src/org/apache/rampart/tomcat/sample/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample01/README.txt
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample01/services.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample01/src/org/apache/rampart/samples/policy/sample01/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample01/src/org/apache/rampart/samples/policy/sample01/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample02/src/org/apache/rampart/samples/policy/sample02/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample02/src/org/apache/rampart/samples/policy/sample02/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample03/src/org/apache/rampart/samples/policy/sample03/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample03/src/org/apache/rampart/samples/policy/sample03/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample04/src/org/apache/rampart/samples/policy/sample04/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample04/src/org/apache/rampart/samples/policy/sample04/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample05/policy.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample06/policy.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample06/services.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample06/src/org/apache/rampart/samples/policy/sample06/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample06/src/org/apache/rampart/samples/policy/sample06/MexService.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample06/src/org/apache/rampart/samples/policy/sample06/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample07/src/org/apache/rampart/samples/policy/sample07/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample07/src/org/apache/rampart/samples/policy/sample07/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample08/policy.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample08/src/org/apache/rampart/samples/policy/sample08/Client.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-samples/policy/sample08/src/org/apache/rampart/samples/policy/sample08/PWCBHandler.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rahas/SimpleTokenStoreTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rampart/AsymmetricBindingBuilderTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rampart/MessageBuilderTestBase.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rampart/PolicyAssertionsTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rampart/RampartEngineTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rampart/SymmetricBindingBuilderTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/rampart/TransportBindingBuilderTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/src/test/java/org/apache/ws/secpolicy/model/SecpolicyModelTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-tests/test-resources/axis2.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust-mar/ (props changed)
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust-mar/module.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust-mar/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/pom.xml
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/Rahas.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/RahasConstants.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/RahasData.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/STSMessageReceiver.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/Token.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/TokenIssuer.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/TokenRequestDispatcherConfig.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/client/STSClient.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/AbstractIssuerConfig.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/SAML2TokenIssuer.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/SAMLTokenIssuer.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/SAMLTokenIssuerConfig.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/SAMLTokenRenewer.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/SAMLTokenValidator.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/SCTIssuer.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/SCTIssuerConfig.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/TokenCancelerConfig.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/TokenIssuerUtil.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/util/AxiomParserPool.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/util/CommonUtil.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/util/SAML2Utils.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/main/java/org/apache/rahas/impl/util/SAMLUtils.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/impl/SAML2TokenIssuerTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/impl/util/SAMLUtilsTest.java
axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-trust/src/test/java/org/apache/rahas/test/util/TestUtil.java
axis/axis2/java/rampart/branches/RAMPART-252/pom.xml
Propchange: axis/axis2/java/rampart/branches/RAMPART-252/
------------------------------------------------------------------------------
--- svn:auto-props (added)
+++ svn:auto-props Sun Jan 29 15:59:32 2017
@@ -0,0 +1,2 @@
+*.java = svn:eol-style=native
+*.xml = svn:eol-style=native
Propchange: axis/axis2/java/rampart/branches/RAMPART-252/
------------------------------------------------------------------------------
--- svn:ignore (original)
+++ svn:ignore Sun Jan 29 15:59:32 2017
@@ -1 +1,3 @@
+.project
+.settings
target
Propchange: axis/axis2/java/rampart/branches/RAMPART-252/
------------------------------------------------------------------------------
--- svn:mergeinfo (original)
+++ svn:mergeinfo Sun Jan 29 15:59:32 2017
@@ -1 +1,2 @@
-/axis/axis2/java/rampart/trunk:987929-1240268
+/axis/axis2/java/rampart/branches/RAMPART-433:1778760-1780751
+/axis/axis2/java/rampart/trunk:987929-1780812
Propchange: axis/axis2/java/rampart/branches/RAMPART-252/apidocs/
------------------------------------------------------------------------------
--- svn:ignore (added)
+++ svn:ignore Sun Jan 29 15:59:32 2017
@@ -0,0 +1,3 @@
+.project
+.settings
+target
Propchange: axis/axis2/java/rampart/branches/RAMPART-252/code-coverage/
------------------------------------------------------------------------------
--- svn:ignore (added)
+++ svn:ignore Sun Jan 29 15:59:32 2017
@@ -0,0 +1,3 @@
+.project
+.settings
+target
Propchange: axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/
------------------------------------------------------------------------------
--- svn:ignore (original)
+++ svn:ignore Sun Jan 29 15:59:32 2017
@@ -1 +1,3 @@
+.project
+.settings
target
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/bin.xml
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/bin.xml?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/bin.xml (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/bin.xml Sun Jan 29 15:59:32 2017
@@ -1,30 +1,29 @@
<assembly>
<id>bin</id>
- <includeBaseDirectory>false</includeBaseDirectory>
+ <baseDirectory>rampart-${version}</baseDirectory>
<formats>
<format>zip</format>
</formats>
<dependencySets>
<dependencySet>
- <outputDirectory>${dist.dir}/modules</outputDirectory>
+ <outputDirectory>modules</outputDirectory>
<includes>
<include>org.apache.rampart:rampart:mar</include>
<include>org.apache.rampart:rahas:mar</include>
</includes>
</dependencySet>
<dependencySet>
- <outputDirectory>${dist.dir}/lib</outputDirectory>
+ <outputDirectory>lib</outputDirectory>
<includes>
<include>org.apache.santuario:xmlsec:jar</include>
- <include>opensaml:opensaml:jar</include>
<include>org.apache.ws.security:wss4j:jar</include>
- <include>bouncycastle:bcprov-jdk15:jar</include>
+ <include>org.bouncycastle:bcprov-jdk15on:jar</include>
<include>org.apache.rampart:rampart-core:jar</include>
<include>org.apache.rampart:rampart-policy:jar</include>
<include>org.apache.rampart:rampart-trust:jar</include>
- <include>org.opensaml:opensaml1:jar</include>
<include>org.opensaml:opensaml:jar</include>
<include>org.opensaml:xmltooling:jar</include>
+ <include>org.owasp.esapi:esapi:jar</include>
<include>joda-time:joda-time:jar</include>
<include>org.slf4j:slf4j-api:jar</include>
<include>org.slf4j:slf4j-jcl:jar</include>
@@ -35,48 +34,51 @@
<include>org.apache.xerces:xercesImpl:jar</include>
<include>org.apache.xerces:resolver:jar</include>
<include>org.apache.xerces:serializer:jar</include>
+ <include>org.owasp.esapi:esapi:jar</include>
</includes>
</dependencySet>
+ <dependencySet>
+ <outputDirectory>docs/apidocs</outputDirectory>
+ <includes>
+ <include>*:apidocs:zip</include>
+ </includes>
+ <useProjectArtifact>false</useProjectArtifact>
+ <unpack>true</unpack>
+ </dependencySet>
</dependencySets>
<fileSets>
<fileSet>
- <directory>target/apidocs</directory>
- <outputDirectory>${dist.dir}/docs/apidocs</outputDirectory>
- </fileSet>
- <fileSet>
- <directory>../documentation/target/site</directory>
- <outputDirectory>${dist.dir}/docs</outputDirectory>
- </fileSet>
- <fileSet>
<directory>../rampart-samples</directory>
- <outputDirectory>${dist.dir}/samples</outputDirectory>
+ <outputDirectory>samples</outputDirectory>
+ <excludes>
+ <exclude>pom.xml</exclude>
+ <exclude>target/**</exclude>
+ </excludes>
</fileSet>
<fileSet>
<directory>../../legal</directory>
- <outputDirectory>${dist.dir}/lib</outputDirectory>
+ <outputDirectory>lib</outputDirectory>
+ </fileSet>
+ <fileSet>
+ <directory>src/main/files</directory>
+ <outputDirectory>.</outputDirectory>
</fileSet>
</fileSets>
<files>
<file>
- <source>../../release-docs/README.txt</source>
- <outputDirectory>${dist.dir}</outputDirectory>
- <destName>README</destName>
+ <source>../../README</source>
<filtered>true</filtered>
</file>
<file>
- <source>../../release-docs/LICENSE.txt</source>
- <outputDirectory>${dist.dir}</outputDirectory>
- <destName>LICENSE</destName>
+ <source>../../LICENSE</source>
</file>
<file>
- <source>../../release-docs/NOTICE.txt</source>
- <outputDirectory>${dist.dir}</outputDirectory>
- <destName>NOTICE</destName>
+ <source>../../NOTICE</source>
</file>
<file>
- <source>../../release-docs/release-notes.html</source>
- <outputDirectory>${dist.dir}</outputDirectory>
+ <source>../../src/site/markdown/release-notes/${release_version}.md</source>
+ <destName>RELEASE-NOTE</destName>
</file>
</files>
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/pom.xml
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/pom.xml?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/pom.xml (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/pom.xml Sun Jan 29 15:59:32 2017
@@ -25,7 +25,7 @@
<parent>
<groupId>org.apache.rampart</groupId>
<artifactId>rampart-project</artifactId>
- <version>1.7.0-SNAPSHOT</version>
+ <version>1.8.0-SNAPSHOT</version>
<relativePath>../../pom.xml</relativePath>
</parent>
<modelVersion>4.0.0</modelVersion>
@@ -36,42 +36,8 @@
<build>
<plugins>
<plugin>
- <groupId>org.apache.maven.plugins</groupId>
- <artifactId>maven-antrun-plugin</artifactId>
- <version>1.1</version>
- <executions>
- <execution>
- <id>build-javadoc</id>
- <phase>package</phase>
- <configuration>
- <tasks>
- <javadoc packagenames="org.apache.rampart.*,org.apache.rahas.*" destdir="target/apidocs" author="true" breakiterator="true" version="true" use="true" windowtitle="Apache Rampart API">
-
- <sourcepath>
- <dirset dir="../..">
- <include name="**/rampart-core/src/main/java" />
- <include name="**/rampart-policy/src/main/java" />
- <include name="**/rampart-trust/src/main/java" />
- </dirset>
- </sourcepath>
-
- <classpath refid="maven.dependency.classpath" />
- <classpath refid="maven.compile.classpath" />
- <classpath refid="maven.runtime.classpath" />
-
- </javadoc>
- </tasks>
- </configuration>
- <goals>
- <goal>run</goal>
- </goals>
- </execution>
- </executions>
- </plugin>
- <plugin>
- <groupId>org.codehaus.gmaven</groupId>
- <artifactId>gmaven-plugin</artifactId>
- <version>1.2</version>
+ <groupId>org.codehaus.gmavenplus</groupId>
+ <artifactId>gmavenplus-plugin</artifactId>
<executions>
<execution>
<id>generate-timestamp</id>
@@ -80,11 +46,14 @@
<goal>execute</goal>
</goals>
<configuration>
- <source>
- import java.util.Date
- import java.text.MessageFormat
- project.properties['buildTimestamp'] = MessageFormat.format("{0,date,MMM dd, yyyy}", new Date())
- </source>
+ <scripts>
+ <script>
+ import java.util.Date
+ import java.text.MessageFormat
+ project.properties['buildTimestamp'] = MessageFormat.format("{0,date,MMM dd, yyyy}", new Date())
+ project.properties['release_version'] = project.version.replaceAll("-SNAPSHOT", "")
+ </script>
+ </scripts>
</configuration>
</execution>
</executions>
@@ -108,6 +77,24 @@
</execution>
</executions>
</plugin>
+ <plugin>
+ <groupId>net.ju-n.maven.plugins</groupId>
+ <artifactId>checksum-maven-plugin</artifactId>
+ <version>1.2</version>
+ <executions>
+ <execution>
+ <goals>
+ <goal>artifacts</goal>
+ </goals>
+ </execution>
+ </executions>
+ </plugin>
+ <plugin>
+ <artifactId>maven-deploy-plugin</artifactId>
+ <configuration>
+ <skip>true</skip>
+ </configuration>
+ </plugin>
</plugins>
</build>
@@ -140,14 +127,20 @@
<version>${project.version}</version>
</dependency>
<dependency>
- <groupId>bouncycastle</groupId>
- <artifactId>bcprov-jdk15</artifactId>
+ <groupId>org.bouncycastle</groupId>
+ <artifactId>bcprov-jdk15on</artifactId>
<version>${bcprov.jdk15.version}</version>
</dependency>
<dependency>
<groupId>org.slf4j</groupId>
<artifactId>slf4j-jcl</artifactId>
</dependency>
+ <dependency>
+ <groupId>${project.groupId}</groupId>
+ <artifactId>apidocs</artifactId>
+ <version>${project.version}</version>
+ <type>zip</type>
+ </dependency>
</dependencies>
</project>
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/src.xml
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/src.xml?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/src.xml (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/distribution/src.xml Sun Jan 29 15:59:32 2017
@@ -1,6 +1,6 @@
<assembly>
<id>src</id>
- <includeBaseDirectory>false</includeBaseDirectory>
+ <baseDirectory>rampart-src-${project.version}</baseDirectory>
<formats>
<format>zip</format>
</formats>
@@ -8,36 +8,56 @@
<fileSets>
<fileSet>
<directory>../..</directory>
- <outputDirectory>rampart-src-${project.version}</outputDirectory>
- <includes>
- <include>**/modules/**/*</include>
- <include>**/pom.xml</include>
- <include>src</include>
- <include>release-docs/*</include>
- </includes>
+ <useDefaultExcludes>true</useDefaultExcludes>
<excludes>
- <exclude>**/target</exclude>
- <exclude>**/target/**/*</exclude>
- <exclude>**/build</exclude>
- <exclude>**/build/**/*</exclude>
- <exclude>**/.settings</exclude>
- <exclude>**/.classpath</exclude>
- <exclude>**/.project</exclude>
- <exclude>**/.wtpmodules</exclude>
- <exclude>**/*.iml</exclude>
- <exclude>**/.settings</exclude>
- <exclude>**/.settings/**/*</exclude>
- <exclude>**/.svn/**</exclude>
- <exclude>release-docs/README.txt</exclude>
+ <!-- build output -->
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/).*${project.build.directory}.*]</exclude>
+
+ <!-- NOTE: Most of the following excludes should not be required
+ if the standard release process is followed. This is because the
+ release plugin checks out project sources into a location like
+ target/checkout, then runs the build from there. The result is
+ a source-release archive that comes from a pretty clean directory
+ structure.
+
+ HOWEVER, if the release plugin is configured to run extra goals
+ or generate a project website, it's definitely possible that some
+ of these files will be present. So, it's safer to exclude them.
+ -->
+
+ <!-- IDEs -->
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?maven-eclipse\.xml]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?\.project]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?\.classpath]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?[^/]*\.iws]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?\.idea(/.*)?]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?out(/.*)?]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?[^/]*\.ipr]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?[^/]*\.iml]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?\.settings(/.*)?]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?\.externalToolBuilders(/.*)?]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?\.deployables(/.*)?]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?\.wtpmodules(/.*)?]</exclude>
+
+ <!-- misc -->
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?cobertura\.ser]</exclude>
+
+ <!-- release-plugin temp files -->
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?pom\.xml\.releaseBackup]</exclude>
+ <exclude>%regex[(?!((?!${project.build.directory}/)[^/]+/)*src/)(.*/)?release\.properties]</exclude>
+
+ <exclude>README</exclude>
</excludes>
</fileSet>
- <fileSet>
- <directory>../..</directory>
- <outputDirectory>rampart-src-${project.version}</outputDirectory>
- <filtered>true</filtered>
- <includes>
- <include>release-docs/README.txt</include>
- </includes>
- </fileSet>
</fileSets>
+ <files>
+ <file>
+ <source>../../README</source>
+ <filtered>true</filtered>
+ </file>
+ <file>
+ <source>../../src/site/markdown/release-notes/${release_version}.md</source>
+ <destName>RELEASE-NOTE</destName>
+ </file>
+ </files>
</assembly>
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/pom.xml
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/pom.xml?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/pom.xml (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/pom.xml Sun Jan 29 15:59:32 2017
@@ -25,7 +25,7 @@
<parent>
<groupId>org.apache.rampart</groupId>
<artifactId>rampart-project</artifactId>
- <version>1.7.0-SNAPSHOT</version>
+ <version>1.8.0-SNAPSHOT</version>
<relativePath>../../pom.xml</relativePath>
</parent>
@@ -34,30 +34,38 @@
<packaging>jar</packaging>
<name>Rampart - Core</name>
- <build>
- <sourceDirectory>src/main/java</sourceDirectory>
- <resources>
- <resource>
- <directory>src/main/java</directory>
- <excludes>
- <exclude>**/*.java</exclude>
- </excludes>
- </resource>
- </resources>
- <plugins>
- <plugin>
- <groupId>org.apache.maven.plugins</groupId>
- <artifactId>maven-compiler-plugin</artifactId>
- <configuration>
- <source>1.5</source>
- <target>1.5</target>
- </configuration>
- </plugin>
- </plugins>
- </build>
-
<dependencies>
<dependency>
+ <groupId>org.apache.axis2</groupId>
+ <artifactId>axis2-kernel</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.axis2</groupId>
+ <artifactId>axis2-mtompolicy</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.axis2</groupId>
+ <artifactId>mex</artifactId>
+ <classifier>impl</classifier>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.ws.security</groupId>
+ <artifactId>wss4j</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>org.bouncycastle</groupId>
+ <artifactId>bcprov-jdk15on</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>org.opensaml</groupId>
+ <artifactId>opensaml</artifactId>
+ </dependency>
+ <dependency>
+ <groupId>xalan</groupId>
+ <artifactId>xalan</artifactId>
+ <scope>runtime</scope>
+ </dependency>
+ <dependency>
<groupId>org.apache.rampart</groupId>
<artifactId>rampart-policy</artifactId>
<version>${project.version}</version>
@@ -70,20 +78,17 @@
<dependency>
<groupId>org.apache.ws.commons.axiom</groupId>
<artifactId>axiom-dom</artifactId>
+ <scope>runtime</scope>
+ </dependency>
+ <dependency>
+ <groupId>junit</groupId>
+ <artifactId>junit</artifactId>
+ <scope>test</scope>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.ws.commons.axiom</groupId>
+ <artifactId>axiom-truth</artifactId>
+ <scope>test</scope>
</dependency>
</dependencies>
-
- <reporting>
- <plugins>
- <plugin>
- <groupId>org.apache.maven.plugins</groupId>
- <artifactId>maven-site-plugin</artifactId>
- <version>2.0-beta-5</version>
- <configuration>
- <templateDirectory>${basedir}</templateDirectory>
- <menu ref="parent" />
- </configuration>
- </plugin>
- </plugins>
- </reporting>
</project>
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/ExtendedPolicyValidatorCallbackHandler.java
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/ExtendedPolicyValidatorCallbackHandler.java?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/ExtendedPolicyValidatorCallbackHandler.java (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/ExtendedPolicyValidatorCallbackHandler.java Sun Jan 29 15:59:32 2017
@@ -3,7 +3,6 @@ package org.apache.rampart;
import org.apache.ws.security.WSSecurityEngineResult;
import java.util.List;
-import java.util.Vector;
/**
* This is an extension of the PolicyValidatorCallbackHandler. PolicyValidatorCallbackHandler uses Vector
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/NonceCache.java
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/NonceCache.java?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/NonceCache.java (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/NonceCache.java Sun Jan 29 15:59:32 2017
@@ -140,12 +140,12 @@ public class NonceCache extends Abstract
rightNow.add(Calendar.SECOND, -(maxLifeTime));
long timeBeforeMaxLifeTime = rightNow.getTimeInMillis();
- Iterator iterator = mapIdNonce.entrySet().iterator();
+ Iterator<Map.Entry<Nonce, Calendar>> iterator = mapIdNonce.entrySet().iterator();
while (iterator.hasNext()) {
- Map.Entry pair = (Map.Entry)iterator.next();
- Calendar itemDate = (Calendar)pair.getValue();
+ Map.Entry<Nonce, Calendar> pair = iterator.next();
+ Calendar itemDate = pair.getValue();
long itemAddedTime = itemDate.getTimeInMillis();
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/PolicyBasedResultsValidator.java
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/PolicyBasedResultsValidator.java?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/PolicyBasedResultsValidator.java (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/PolicyBasedResultsValidator.java Sun Jan 29 15:59:32 2017
@@ -39,7 +39,6 @@ import org.jaxen.JaxenException;
import javax.xml.namespace.QName;
import java.math.BigInteger;
-import java.security.KeyStore;
import java.security.cert.X509Certificate;
import java.util.*;
@@ -196,8 +195,9 @@ public class PolicyBasedResultsValidator
* Perform further checks on the timestamp that was transmitted in the
* header.
* In the following implementation the timestamp is valid if :
- * Timestamp->Created < 'now' < Timestamp->Expires (Last test already handled by WSS4J)
- *
+ * Timestamp->Created < 'now' < Timestamp->Expires.
+ * (Last test handled by WSS4J also if timeStampStrict enabled)
+ *
* Note: the method verifyTimestamp(Timestamp) allows custom
* implementations with other validation algorithms for subclasses.
*/
@@ -316,13 +316,34 @@ public class PolicyBasedResultsValidator
UsernameToken ut = (UsernameToken) token;
//Check presence of a UsernameToken
WSSecurityEngineResult utResult = WSSecurityUtil.fetchActionResult(results, WSConstants.UT);
+
if (utResult == null && !ut.isOptional()) {
throw new RampartException("usernameTokenMissing");
}
+
+ org.apache.ws.security.message.token.UsernameToken wssUt =
+ (org.apache.ws.security.message.token.UsernameToken) utResult.get(WSSecurityEngineResult.TAG_USERNAME_TOKEN);
+
+ if(ut.isNoPassword() && wssUt.getPassword() != null) {
+ throw new RampartException("invalidUsernameTokenType");
+ }
+
+ if(ut.isHashPassword() && !wssUt.isHashed()) {
+ throw new RampartException("invalidUsernameTokenType");
+ } else if (!ut.isHashPassword() && (wssUt.getPassword() == null ||
+ !wssUt.getPasswordType().equals(WSConstants.PASSWORD_TEXT))) {
+ throw new RampartException("invalidUsernameTokenType");
+ }
+
+
} else if (token instanceof IssuedToken) {
- //TODO is is enough to check for ST_UNSIGNED results ??
- WSSecurityEngineResult samlResult = WSSecurityUtil.fetchActionResult(results, WSConstants.ST_UNSIGNED);
+ WSSecurityEngineResult samlResult = WSSecurityUtil.fetchActionResult(results, WSConstants.ST_SIGNED);
+ // Then check for unsigned saml tokens
+ if (samlResult == null) {
+ log.debug("No signed SAMLToken found. Looking for unsigned SAMLTokens");
+ samlResult = WSSecurityUtil.fetchActionResult(results, WSConstants.ST_UNSIGNED);
+ }
if (samlResult == null) {
throw new RampartException("samlTokenMissing");
}
@@ -677,27 +698,45 @@ public class PolicyBasedResultsValidator
((rpd.getInitiatorToken() != null && rmd.isInitiator())
|| rpd.getRecipientToken() != null && !rmd.isInitiator()));
}
-
+
/*
- * Verify that ts->Created is before 'now'
- * - testing that timestamp has not expired ('now' is before ts->Expires) is handled earlier by WSS4J
- * TODO must write unit tests
- */
+ * Verify whether timestamp of the message is valid.
+ * If timeStampStrict is enabled in rampartConfig; testing of timestamp has not expired
+ * ('now' is before ts->Expires) is also handled earlier by WSS4J without timeskew.
+ * TODO must write unit tests
+ */
protected boolean verifyTimestamp(Timestamp timestamp, RampartMessageData rmd) throws RampartException {
+ long maxSkew = RampartUtil.getTimestampMaxSkew(rmd);
+
+ //Verify that ts->Created is before 'now'
Date createdTime = timestamp.getCreated();
if (createdTime != null) {
long now = Calendar.getInstance().getTimeInMillis();
- // adjust 'now' with allowed timeskew
- long maxSkew = RampartUtil.getTimestampMaxSkew( rmd );
- if( maxSkew > 0 ) {
+ //calculate the tolerance limit for timeskew of the 'Created' in timestamp
+ if (maxSkew > 0) {
now += (maxSkew * 1000);
}
-
+
// fail if ts->Created is after 'now'
- if( createdTime.getTime() > now ) {
+ if (createdTime.getTime() > now) {
+ return false;
+ }
+ }
+
+ //Verify that ts->Expires is after now.
+ Date expires = timestamp.getExpires();
+
+ if (expires != null) {
+ long now = Calendar.getInstance().getTimeInMillis();
+ //calculate the tolerance limit for timeskew of the 'Expires' in timestamp
+ if (maxSkew > 0) {
+ now -= (maxSkew * 1000);
+ }
+ //fail if ts->Expires is before 'now'
+ if (expires.getTime() < now) {
return false;
}
}
Modified: axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/RampartEngine.java
URL: http://svn.apache.org/viewvc/axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/RampartEngine.java?rev=1780817&r1=1780816&r2=1780817&view=diff
==============================================================================
--- axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/RampartEngine.java (original)
+++ axis/axis2/java/rampart/branches/RAMPART-252/modules/rampart-core/src/main/java/org/apache/rampart/RampartEngine.java Sun Jan 29 15:59:32 2017
@@ -16,13 +16,8 @@
package org.apache.rampart;
-import org.apache.axiom.soap.SOAP11Constants;
-import org.apache.axiom.soap.SOAP12Constants;
import org.apache.axiom.soap.SOAPEnvelope;
import org.apache.axiom.soap.SOAPFault;
-import org.apache.axiom.soap.SOAPFaultCode;
-import org.apache.axiom.soap.SOAPFaultSubCode;
-import org.apache.axiom.soap.SOAPFaultValue;
import org.apache.axiom.soap.SOAPHeader;
import org.apache.axiom.soap.SOAPHeaderBlock;
import org.apache.axis2.AxisFault;
@@ -32,17 +27,39 @@ import org.apache.commons.logging.LogFac
import org.apache.rahas.Token;
import org.apache.rahas.TokenStorage;
import org.apache.rampart.policy.RampartPolicyData;
+import org.apache.rampart.policy.model.KerberosConfig;
+import org.apache.rampart.policy.model.RampartConfig;
import org.apache.rampart.saml.SAMLAssertionHandler;
import org.apache.rampart.saml.SAMLAssertionHandlerFactory;
import org.apache.rampart.util.Axis2Util;
import org.apache.rampart.util.RampartUtil;
import org.apache.ws.secpolicy.WSSPolicyException;
-import org.apache.ws.security.*;
+import org.apache.ws.secpolicy.model.KerberosToken;
+import org.apache.ws.secpolicy.model.SupportingToken;
+import org.apache.ws.secpolicy.model.UsernameToken;
+import org.apache.ws.security.NamePasswordCallbackHandler;
+import org.apache.ws.security.WSConstants;
+import org.apache.ws.security.WSPasswordCallback;
+import org.apache.ws.security.WSSConfig;
+import org.apache.ws.security.WSSecurityEngine;
+import org.apache.ws.security.WSSecurityEngineResult;
+import org.apache.ws.security.WSSecurityException;
+import org.apache.ws.security.WSUsernameTokenPrincipal;
import org.apache.ws.security.components.crypto.Crypto;
+import org.apache.ws.security.validate.KerberosTokenDecoder;
+import org.apache.ws.security.validate.KerberosTokenValidator;
+import javax.security.auth.callback.CallbackHandler;
+import javax.security.auth.callback.UnsupportedCallbackException;
import javax.xml.namespace.QName;
+
+import java.io.IOException;
import java.security.cert.X509Certificate;
-import java.util.*;
+import java.util.ArrayList;
+import java.util.Collection;
+import java.util.Iterator;
+import java.util.List;
+import java.util.Vector;
public class RampartEngine {
@@ -88,8 +105,93 @@ public class RampartEngine {
List<WSSecurityEngineResult> results;
WSSecurityEngine engine = new WSSecurityEngine();
+
+ //Set rampart's configuration of WSS4J
+ engine.setWssConfig(rmd.getConfig());
+
+ RampartConfig rampartConfig = rpd.getRampartConfig();
+ if (rampartConfig != null) {
+ WSSConfig config = engine.getWssConfig();
+
+ // Inbound Kerberos authentication for web services
+ // Check the service policy for Kerberos token and add KerberosTokenValidator for BINARY_TOKEN validation
+ SupportingToken endSupptokens = rpd.getEndorsingSupportingTokens();
+ if (endSupptokens != null && endSupptokens.getTokens() != null &&
+ endSupptokens.getTokens().size() > 0) {
+
+ log.debug("Processing endorsing supporting tokens");
+
+ for (org.apache.ws.secpolicy.model.Token token : endSupptokens.getTokens()) {
+ if (token instanceof KerberosToken) {
+ log.debug("KerberosToken is found as part of the endorsing supporting tokens.Check for KerberosConfig.");
+ KerberosConfig kerberosConfig = rampartConfig.getKerberosConfig();
+
+ if (null != kerberosConfig){
+ log.debug("KerberosConfig is found.");
+ log.debug("Creating KerberosTokenValidor with the available KerberosConfig.");
+ KerberosTokenValidator kerberosValidator = new KerberosTokenValidator();
+
+ KerberosTokenDecoder kerberosTokenDecoder = RampartUtil.getKerberosTokenDecoder(msgCtx, kerberosConfig);
+ if (kerberosTokenDecoder != null) {
+ kerberosValidator.setKerberosTokenDecoder(kerberosTokenDecoder);
+ }
+ kerberosValidator.setContextName(kerberosConfig.getJaasContext());
+ kerberosValidator.setServiceName(kerberosConfig.getServicePrincipalName());
+ String serviceNameForm = kerberosConfig.getServicePrincipalNameForm();
+
+ if (KerberosConfig.USERNAME_NAME_FORM.equals(serviceNameForm)) {
+ kerberosValidator.setUsernameServiceNameForm(true);
+ }
+
+ String principalName = kerberosConfig.getPrincipalName();
+ if (null == principalName){
+ log.debug("Principal name is not available in the KerberosConfig.Using the Rampart configuration's user.");
+ principalName = rampartConfig.getUser();
+ }
+
+ String password = kerberosConfig.getPrincipalPassword();
+ if (password == null) {
+ log.debug("Principal password is not available in the KerberosConfig.Trying with the configured Rampart password callback.");
+ CallbackHandler handler = RampartUtil.getPasswordCB(rmd);
+
+ if (handler != null) {
+ WSPasswordCallback[] cb = {
+ new WSPasswordCallback(principalName, WSPasswordCallback.CUSTOM_TOKEN)
+ };
+
+ try {
+ handler.handle(cb);
+ if (cb[0].getPassword() != null && !"".equals(cb[0].getPassword())) {
+ password = cb[0].getPassword();
+ }
+ } catch (IOException e) {
+ throw new RampartException("errorInGettingPasswordForUser", new String[] { principalName }, e);
+ } catch (UnsupportedCallbackException e) {
+ throw new RampartException("errorInGettingPasswordForUser", new String[] { principalName }, e);
+ }
+ } else{
+ log.debug("No Rampart password handler is configured.");
+ }
+ }
+
+ if (principalName != null && password != null) {
+ NamePasswordCallbackHandler cb = new NamePasswordCallbackHandler(principalName, password);
+ kerberosValidator.setCallbackHandler(cb);
+ }
+
+ config.setValidator(WSSecurityEngine.BINARY_TOKEN, kerberosValidator);
+ log.debug("KerberosTokenValidator is configured and set for BINARY_TOKEN.");
+ } else {
+ log.debug("KerberosConfig is not found.Skipping configurating and setting of a Kerberos validator.");
+ }
+ }
+ }
+ }
+
+ engine.setWssConfig(config);
+ }
- ValidatorData data = new ValidatorData(rmd);
+ ValidatorData data = new ValidatorData(rmd);
SOAPHeader header = rmd.getMsgContext().getEnvelope().getHeader();
if(header == null) {
@@ -119,6 +221,19 @@ public class RampartEngine {
t0 = System.currentTimeMillis();
}
+ //wss4j does not allow username tokens with no password per default, see https://issues.apache.org/jira/browse/WSS-420
+ //configure it to allow them explicitly if at least one username token assertion with no password requirement is found
+ if (!rmd.isInitiator()) {
+ Collection<UsernameToken> usernameTokens = RampartUtil.getUsernameTokens(rpd);
+ for (UsernameToken usernameTok : usernameTokens) {
+ if (usernameTok.isNoPassword()) {
+ log.debug("Found UsernameToken with no password assertion in policy, configuring ws security processing to allow username tokens without password." );
+ engine.getWssConfig().setAllowUsernameTokenNoPassword(true);
+ break;
+ }
+ }
+ }
+
String actorValue = secHeader.getAttributeValue(new QName(rmd
.getSoapConstants().getEnvelopeURI(), "actor"));
@@ -165,89 +280,90 @@ public class RampartEngine {
//Store username in MessageContext property
- for (int j = 0; j < results.size(); j++) {
- WSSecurityEngineResult wser = (WSSecurityEngineResult) results.get(j);
- final Integer actInt =
- (Integer) wser.get(WSSecurityEngineResult.TAG_ACTION);
- if (WSConstants.ST_UNSIGNED == actInt.intValue()) {
+ if (results != null) {
+ for (int j = 0; j < results.size(); j++) {
+ WSSecurityEngineResult wser = (WSSecurityEngineResult) results.get(j);
+ final Integer actInt =
+ (Integer) wser.get(WSSecurityEngineResult.TAG_ACTION);
+ if (WSConstants.ST_UNSIGNED == actInt.intValue()) {
- Object samlAssertion = wser.get(WSSecurityEngineResult.TAG_SAML_ASSERTION);
+ Object samlAssertion = wser.get(WSSecurityEngineResult.TAG_SAML_ASSERTION);
- SAMLAssertionHandler samlAssertionHandler
- = SAMLAssertionHandlerFactory.createAssertionHandler(samlAssertion);
+ SAMLAssertionHandler samlAssertionHandler
+ = SAMLAssertionHandlerFactory.createAssertionHandler(samlAssertion);
- if (samlAssertionHandler.isBearerAssertion()) {
- break;
- }
- //Store the token
- try {
- TokenStorage store = rmd.getTokenStorage();
- if (store.getToken(samlAssertionHandler.getAssertionId()) == null) {
- Token token = new Token(samlAssertionHandler.getAssertionId(),
- samlAssertionHandler.getAssertionElement(),
- samlAssertionHandler.getDateNotBefore(),
- samlAssertionHandler.getDateNotOnOrAfter());
-
- token.setSecret(samlAssertionHandler.
- getAssertionKeyInfoSecret(signatureCrypto, tokenCallbackHandler));
- store.add(token);
+ if (samlAssertionHandler.isBearerAssertion()) {
+ break;
}
- } catch (Exception e) {
- throw new RampartException(
- "errorInAddingTokenIntoStore", e);
- }
- } else if (WSConstants.UT == actInt) {
+ //Store the token
+ try {
+ TokenStorage store = rmd.getTokenStorage();
+ if (store.getToken(samlAssertionHandler.getAssertionId()) == null) {
+ Token token = new Token(samlAssertionHandler.getAssertionId(),
+ samlAssertionHandler.getAssertionElement(),
+ samlAssertionHandler.getDateNotBefore(),
+ samlAssertionHandler.getDateNotOnOrAfter());
+
+ token.setSecret(samlAssertionHandler.
+ getAssertionKeyInfoSecret(signatureCrypto, tokenCallbackHandler));
+ store.add(token);
+ }
+ } catch (Exception e) {
+ throw new RampartException(
+ "errorInAddingTokenIntoStore", e);
+ }
+ } else if (WSConstants.UT == actInt) {
- WSUsernameTokenPrincipal userNameTokenPrincipal = (WSUsernameTokenPrincipal)wser.get(WSSecurityEngineResult.TAG_PRINCIPAL);
+ WSUsernameTokenPrincipal userNameTokenPrincipal = (WSUsernameTokenPrincipal)wser.get(WSSecurityEngineResult.TAG_PRINCIPAL);
- String username = userNameTokenPrincipal.getName();
- msgCtx.setProperty(RampartMessageData.USERNAME, username);
-
- if (userNameTokenPrincipal.getNonce() != null) {
- // Check whether this is a replay attack. To verify that we need to check whether nonce value
- // is a repeating one
- int nonceLifeTimeInSeconds = 0;
+ String username = userNameTokenPrincipal.getName();
+ msgCtx.setProperty(RampartMessageData.USERNAME, username);
+
+ if (userNameTokenPrincipal.getNonce() != null) {
+ // Check whether this is a replay attack. To verify that we need to check whether nonce value
+ // is a repeating one
+ int nonceLifeTimeInSeconds = 0;
+
+ if (rpd.getRampartConfig() != null) {
+
+ String stringLifeTime = rpd.getRampartConfig().getNonceLifeTime();
+
+ try {
+ nonceLifeTimeInSeconds = Integer.parseInt(stringLifeTime);
+
+ } catch (NumberFormatException e) {
+ log.error("Invalid value for nonceLifeTime in rampart configuration file.", e);
+ throw new RampartException(
+ "invalidNonceLifeTime", e);
- if (rpd.getRampartConfig() != null) {
-
- String stringLifeTime = rpd.getRampartConfig().getNonceLifeTime();
+ }
+ }
- try {
- nonceLifeTimeInSeconds = Integer.parseInt(stringLifeTime);
+ String serviceEndpointName = msgCtx.getAxisService().getEndpointName();
- } catch (NumberFormatException e) {
- log.error("Invalid value for nonceLifeTime in rampart configuration file.", e);
- throw new RampartException(
- "invalidNonceLifeTime", e);
+ boolean valueRepeating = serviceNonceCache.isNonceRepeatingForService(serviceEndpointName, username, userNameTokenPrincipal.getNonce());
+ if (valueRepeating){
+ throw new RampartException("repeatingNonceValue", new Object[]{ userNameTokenPrincipal.getNonce(), username} );
}
- }
-
- String serviceEndpointName = msgCtx.getAxisService().getEndpointName();
-
- boolean valueRepeating = serviceNonceCache.isNonceRepeatingForService(serviceEndpointName, username, userNameTokenPrincipal.getNonce());
- if (valueRepeating){
- throw new RampartException("repeatingNonceValue", new Object[]{ userNameTokenPrincipal.getNonce(), username} );
+ serviceNonceCache.addNonceForService(serviceEndpointName, username, userNameTokenPrincipal.getNonce(), nonceLifeTimeInSeconds);
}
+ } else if (WSConstants.SIGN == actInt) {
+ X509Certificate cert = (X509Certificate) wser.get(WSSecurityEngineResult.TAG_X509_CERTIFICATE);
- serviceNonceCache.addNonceForService(serviceEndpointName, username, userNameTokenPrincipal.getNonce(), nonceLifeTimeInSeconds);
- }
- } else if (WSConstants.SIGN == actInt) {
- X509Certificate cert = (X509Certificate) wser.get(WSSecurityEngineResult.TAG_X509_CERTIFICATE);
+ if (rpd.isAsymmetricBinding() && cert == null && rpd.getInitiatorToken() != null
+ && !rpd.getInitiatorToken().isDerivedKeys()) {
- if (rpd.isAsymmetricBinding() && cert == null && rpd.getInitiatorToken() != null
- && !rpd.getInitiatorToken().isDerivedKeys()) {
+ // If symmetric binding is used, the certificate should be null.
+ // If certificate is not null then probably initiator and
+ // recipient are using 2 different bindings.
+ throw new RampartException("invalidSignatureAlgo");
+ }
- // If symmetric binding is used, the certificate should be null.
- // If certificate is not null then probably initiator and
- // recipient are using 2 different bindings.
- throw new RampartException("invalidSignatureAlgo");
+ msgCtx.setProperty(RampartMessageData.X509_CERT, cert);
}
-
- msgCtx.setProperty(RampartMessageData.X509_CERT, cert);
}
-
}
SOAPEnvelope env = Axis2Util.getSOAPEnvelopeFromDOMDocument(rmd.getDocument(), true);
@@ -290,41 +406,7 @@ public class RampartEngine {
private boolean isSecurityFault(RampartMessageData rmd) {
-
- SOAPEnvelope soapEnvelope = rmd.getMsgContext().getEnvelope();
- SOAPFault soapFault = soapEnvelope.getBody().getFault();
-
- // This is not a soap fault
- if (soapFault == null) {
- return false;
- }
-
- String soapVersionURI = rmd.getMsgContext().getEnvelope().getNamespace().getNamespaceURI();
- SOAPFaultCode faultCode = soapFault.getCode();
- if(faultCode == null){
- //If no fault code is given, then it can't be security fault
- return false;
- }
-
- if (soapVersionURI.equals(SOAP11Constants.SOAP_ENVELOPE_NAMESPACE_URI)) {
- // This is a fault processing the security header
- if (faultCode.getTextAsQName().getNamespaceURI().equals(WSConstants.WSSE_NS)) {
- return true;
- }
- } else if (soapVersionURI.equals(SOAP12Constants.SOAP_ENVELOPE_NAMESPACE_URI)) {
- // TODO AXIOM API returns only one fault sub code, there can be many
- SOAPFaultSubCode faultSubCode = faultCode.getSubCode();
- if (faultSubCode != null) {
- SOAPFaultValue faultSubCodeValue = faultSubCode.getValue();
-
- // This is a fault processing the security header
- if (faultSubCodeValue != null && faultSubCodeValue.getTextAsQName().
- getNamespaceURI().equals(WSConstants.WSSE_NS)) {
- return true;
- }
- }
- }
-
- return false;
+ SOAPFault soapFault = rmd.getMsgContext().getEnvelope().getBody().getFault();
+ return soapFault == null ? false : RampartUtil.isSecurityFault(soapFault);
}
}