Hello, I am using a security policy with Usernametoken enabled. I expected to have a clean text password because all i used in my poolicy is:
<sp:SignedSupportingTokens xmlns:sp=" http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> <wsp:Policy> <sp:UsernameToken sp:IncludeToken=" http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient " /> </wsp:Policy> </sp:SignedSupportingTokens> Anyway, i get a hashed password..shouldn't the password be plain text by default and to be hashed only if you specify this in the policy.I am asking because axis2 is treating hashed passwords differenty. thanks, Nencho
