[
https://issues.apache.org/jira/browse/AXIOM-458?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Wally Dennis updated AXIOM-458:
-------------------------------
Description:
I am currently attempting to upgrade our server environment from Axis2 1.5.6 to
Axis2 1.6.2 and have encountered a serious issue with any of our services that
return MTOM attachments. All of our services use X.590 digital signatures on
both the request and responses, and with the move to 1.6.2 the response
signature verification is consistently failing. Basically, the digest
validation step is failing to match the expected digest in almost every test
I've attempted when using the service based on 1.6.2:
1.5.6 Client->1.5.6 Service . . . works
1.5.6 Client->1.6.2 Service . . . fails
1.6.2 Client->1.6.2 Service . . . fails
1.6.2 Client->1.5.6 Service . . . works
was:
I am currently attempted to upgrade our server environment from Axis2 1.5.6 to
Axis2 1.6.2 and have encountered a serious issue with any of our services that
return MTOM attachments. All of our services use X.590 digital signatures on
both the request and responses, and with the move to 1.6.2 the response
signature verification is consistently failing. Basically, the digest
validation step is failing to match the expected digest in almost every test
I've attempted when using the service based on 1.6.2:
1.5.6 Client->1.5.6 Service . . . works
1.5.6 Client->1.6.2 Service . . . fails
1.6.2 Client->1.6.2 Service . . . fails
1.6.2 Client->1.5.6 Service . . . works
> Issue with signature verification on messages containing MTOM attachments
> -------------------------------------------------------------------------
>
> Key: AXIOM-458
> URL: https://issues.apache.org/jira/browse/AXIOM-458
> Project: Axiom
> Issue Type: Bug
> Affects Versions: 1.2.13
> Environment: Axis2 1.6.2
> Reporter: Wally Dennis
> Priority: Blocker
>
> I am currently attempting to upgrade our server environment from Axis2 1.5.6
> to Axis2 1.6.2 and have encountered a serious issue with any of our services
> that return MTOM attachments. All of our services use X.590 digital
> signatures on both the request and responses, and with the move to 1.6.2 the
> response signature verification is consistently failing. Basically, the
> digest validation step is failing to match the expected digest in almost
> every test I've attempted when using the service based on 1.6.2:
> 1.5.6 Client->1.5.6 Service . . . works
> 1.5.6 Client->1.6.2 Service . . . fails
> 1.6.2 Client->1.6.2 Service . . . fails
> 1.6.2 Client->1.5.6 Service . . . works
--
This message was sent by Atlassian JIRA
(v6.2#6252)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
