Neethi does not support ExactlyOne to allow using OR when defining two tokens
where only one or the other is desired
--------------------------------------------------------------------------------------------------------------------
Key: AXIS2C-1024
URL: https://issues.apache.org/jira/browse/AXIS2C-1024
Project: Axis2-C
Issue Type: Bug
Components: rampart
Affects Versions: Current (Nightly)
Environment: Windows XP.
Reporter: Dave Meier
Priority: Critical
The spec I'm looking at is
http://specs.xmlsoap.org/ws/2005/07/securitypolicy/ws-securitypolicy.pdf in
section 4.1.1.
The spec shows how to OR things together in the policy, but when I tried that
it in rampart/c it didn't work. Here's what I tried (showing just the
SignedSupportingTokens:
<sp:SignedSupportingTokens
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<wsp:Policy>
<wsp:ExactlyOne>
<sp:UsernameToken
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
<sp:SamlToken
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
</wsp:ExactlyOne>
</wsp:Policy>
</sp:SignedSupportingTokens>
This should accept either UsernameToken or SamlToken.
Also tried the following without success:
<sp:SignedSupportingTokens
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<wsp:Policy>
<wsp:All>
<wsp:ExactlyOne>
<sp:UsernameToken
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
<sp:SamlToken
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
</wsp:ExactlyOne>
</wsp:All>
</wsp:Policy>
</sp:SignedSupportingTokens>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
