Freddy Exposito created WSS-542:
-----------------------------------
Summary: Secure Conversation Renew is missing Instance creation
Key: WSS-542
URL: https://issues.apache.org/jira/browse/WSS-542
Project: WSS4J
Issue Type: Bug
Affects Versions: 2.1.1, 2.0.4
Reporter: Freddy Exposito
Assignee: Colm O hEigeartaigh
Fix For: 2.0.5, 2.1.2
Secure Conversation Renew is not working from a .NET client because
<ws:Instance> is missing in the SecurityContextToken.
Reading into the standard here ->
http://docs.oasis-open.org/ws-sx/ws-secureconversation/v1.4/os/ws-secureconversation-1.4-spec-os.html
says the following:
"The initial issuance need not contain a wsc:Instance element, however, all
subsequent issuances with different keys MUST have a wsc:Instance element with
a unique value."
Also a reference seems to be required in the SecurityTokenRefernce according to
this:
"If a specific key instance needs to be referenced, then the global attribute
wsc:Instance is included in the <wsse:Reference> sub-element (only when using
<wsc:Identifier> references)"
The attached patch works for us
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
