Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
Security Headers missing with XwsSecurityInterceptor and Spring Integration [SWS-871] #945
When using Spring Integration's (2.2.4) Web Service Outbound Gateway with the XwsSecurityInterceptor, the security headers are not added to the message that is sent to the server.
When creating the actual SAAJ SOAP message, the AbstractWebServiceOutboundGateway.RequestMessageCallback calls the DefaultHeaderMapper which sets the SOAP action field. This triggers the serialization of the Java SOAP object to a byte array.
Later, when the XwsSecurityInterceptor adds the security headers, the byte array is not recreated so the data actually sent to the server does not include the byte array.
Recommend adding the following at line 139 of the XwsSecurityInterceptor to fix the issue:
Referenced from: commits 06d7356