Hi Kent,
Did you try using
<wsp:Policy>
<sp:X509Token sp:IncludeToken="
http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Always";>
<wsp:Policy>
<sp:RequireIssuerSerialReference/>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
as the token assertion. There was an issue with issuer serial [1], but
it is fixed in the revision 597005.
Thanks,
Nandana
[1] - http://issues.apache.org/jira/browse/RAMPART-111
On Dec 10, 2007 11:01 AM, Kent Tong <[EMAIL PROTECTED]> wrote:
>
> Hi,
>
> I've kind of got rampart working with a policy file in a client. However,
> no
> matter what I do, the
> client always uses direct reference for the x509 certificate. Is it
> possible
> to change it to say
> issuer serial references? Here is the relevant part of my policy file:
>
>
> <sp:Wss10>
> <wsp:Policy>
> <!-- <sp:MustSupportRefEmbeddedToken /> -->
> <sp:MustSupportRefIssuerSerial />
> </wsp:Policy>
> </sp:Wss10>
>
>
>
>
> -----
> --
> Kent Tong
> Wicket tutorials freely available at http://www.agileskills2.org/EWDW
> --
> View this message in context:
> http://www.nabble.com/-axis2--rampart%3A-how-to-NOT-use-direct-token-references-tp14247590p14247590.html
> Sent from the Axis - User mailing list archive at Nabble.com.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
