You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fx-dev@ws.apache.org by ji...@apache.org on 2004/06/02 20:23:53 UTC
[jira] Closed: (WSFX-8) Suggestion for a more flexible handling of UsernameTokens
Message:
The following issue has been closed.
Resolver: Werner Dittmann
Date: Wed, 2 Jun 2004 11:22 AM
See e-mail to ws-fx list regarding this issue.
---------------------------------------------------------------------
View the issue:
http://issues.apache.org/jira/browse/WSFX-8
Here is an overview of the issue:
---------------------------------------------------------------------
Key: WSFX-8
Summary: Suggestion for a more flexible handling of UsernameTokens
Type: Improvement
Status: Closed
Priority: Major
Resolution: WON'T FIX
Project: WSFX
Components:
WSS4J
Assignee:
Reporter: Christof Soehngen
Created: Mon, 24 May 2004 6:45 AM
Updated: Wed, 2 Jun 2004 11:22 AM
Environment: CVS snapshot from 2004-05-24
Description:
I suggest improving UsernameToken handling to allow the following:
- hook in WSDoAllReceiver for custom validation algorithms
- conserve custom child-elements of the UsernameToken and pass them to the validation algorithm
Problems with the existing code are:
- validation takes place WSSecurityEngine
- additional custom elements of the UsernameToken are discarded
I therefore modified the following classes:
- org.apache.ws.security.WSSecurityEngine.java:
* Remove method handleUsernameToken()
* Modify method processSecurityHeader (extraction of UsernameToken)
- org.apache.ws.security.WSSecurityEngineResult.java:
* Add attribute ut
* Add constructor with username token
* Add method getUsernameToken
- org.apache.ws.security.message.WSAddUsernameToken.java:
* Add method addCustomElement()
- org.apache.ws.security.message.token.UsernameToken.java:
* Modify constructor: Read custom elements from XML
* Add attribute customElements
* Add method getCustomElements()
* Add method setCustomElements()
- org.apache.ws.axis.security.WSDoAllReceiver.java:
* Modify method invoke: call hook for validation of UsernameToken (verifyUsernameToken())
* Add method verifyUsernameToken()
Any suggestions are welcome,
Christof
---------------------------------------------------------------------
JIRA INFORMATION:
This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
If you want more information on JIRA, or have a bug to report see:
http://www.atlassian.com/software/jira