Colm O hEigeartaigh created WSS-406:
---------------------------------------
Summary: Add the ability to define which algorithms are acceptable
when processing a security header
Key: WSS-406
URL: https://issues.apache.org/jira/browse/WSS-406
Project: WSS4J
Issue Type: Improvement
Affects Versions: 1.6.7
Reporter: Colm O hEigeartaigh
Assignee: Colm O hEigeartaigh
Fix For: 1.6.8
This task is to add the ability to define which algorithms are acceptable when
processing a security header. In WS-SecurityPolicy, you can define an
"AlgorithmSuite" (e.g. sp:Basic128) which describes which algorithms must be
used. Currently there is no way to enforce this in WSS4J.
An AlgorithmSuite class will be added to WSS4J, which a third party library can
populate. This will hold acceptable values for things like signature method,
digest, c14n algorithms etc., as well as key sizes, and encryption symmetric
and key wrapping algorithms etc. If WSS4J encounters an Element that does not
match one of these values then an exception is thrown.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
