Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Signature & Binary Security Token [SWS-842] #916

Closed
gregturn opened this issue Jul 29, 2013 · 1 comment
Closed

Signature & Binary Security Token [SWS-842] #916

gregturn opened this issue Jul 29, 2013 · 1 comment
Assignees
Milestone

Comments

@gregturn
Copy link
Member

@gregturn gregturn commented Jul 29, 2013

stephane cizeron opened SWS-842 and commented

Hello,
When you want to sign the BinarySecurityToken with Wss4jSecurityInterceptor, in a previous version of spring 2.0.x and wss4j (1.5.x), you only had to add a special keyword Token in the signatureParts. Since spring-ws 2.1.x relies on wss4j 1.6.x, this keyword was removed from wss4j and the signature processing failed => Token element not found in the DOM. The current doc makes a reference to the old special keyword. Nowadays, it's impossible to sign the BST. When using STRTransform, we don't sign the BST but just a reference, that's not really the same issue and the signature validation fails on server.

if you have a replacement procedure in order to sign the BST, i will take it quickly.

Best regards


Affects: 2.1.3

Referenced from: commits 6d3db75

@gregturn
Copy link
Member Author

@gregturn gregturn commented Feb 6, 2014

Arjen Poutsma commented

Fixed by removing the paragraph from the documentation.

@gregturn gregturn closed this Mar 20, 2014
@gregturn gregturn added this to the 2.2.RC1 milestone Sep 22, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
2 participants