Hi Oliver, So, it sounds like that first option wouldn't work for me since it is adding more complaining(more sensitive). :) For the second option, are you suggesting that changing From: <wsp:Policy><sp:HttpsToken RequireClientCertificate="false"/></wsp:Policy>
To: <wsp:Policy><sp:HttpsToken RequireClientCertificate="false"><wsp:Policy/></sp:HttpsToken> for each occurrence of the <sp:HttpsToken> element? On Thu, May 31, 2012 at 6:02 PM, Oliver Wulff <[email protected]> wrote: > Hi Gina > > The fix was that CXF complains if this element is missing. > > Another option is that you download this wsdl, fix the incorrect policy > definition and reference the local wsdl file in the STSClient bean. > > Thanks > Oli > > > > > ------ > > Oliver Wulff > > Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/> > Solution Architect > http://coders.talend.com > > <http://coders.talend.com>Talend Application Integration Division > http://www.talend.com > > ________________________________ > From: Gina Choi [[email protected]] > Sent: 31 May 2012 23:41 > To: [email protected] > Cc: [email protected]; Oliver Wulff > Subject: Re: Active Profile Problem with Apache CXF and ADFS2.0(STS) > > Hi Oliver, > > <sp:HttpsToken> only appears in ADFS2.0 wsdl file like bellow, but I don't > think that can modify ADFS2.0 wsdl file. It came from Microsoft as it is. > <sp:HttpsToken> is child of <wsp:Policy> here. > > > <wsp:Policy><sp:HttpsToken RequireClientCertificate="true"/></wsp:Policy> > > > You have mentioned that there is a fix from CXF. I am using CXF 2.6.0. Do > you have newer version available? > > Gina > > On Thu, May 31, 2012 at 5:18 PM, Oliver Wulff <[email protected]<mailto: > [email protected]>> wrote: > Hi Gina > > Add an empty wsp:Policy element as a child to sp:HttpsToken: > </wsp:policy> > > There was a fix in CXF to be spec compliant. > > HTH > > > > ------ > > Oliver Wulff > > Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/> > Solution Architect > http://coders.talend.com > > <http://coders.talend.com>Talend Application Integration Division > http://www.talend.com >
