Hi Devs, Got a question on $subject. Concern is, if the username token is retrieved by building the whole message with DOM or it is read up to security header as in SAX(see [1] for difference) when parsing for authentication.
[2] says, "Part of this performance hit from WS-Security is due to a flaw in the Rampart handler implementation, which causes it to convert each request and response message to Document Object Model (DOM) form any time Rampart is engaged (even if no security processing is to be done for the message). This particular issue should be fixed in time for a Rampart 1.5 release to go along with Axis2 1.5. Depending on how the fix is implemented, it may substantially improve the times for the UsernameToken test.". Difference is, when the messages get bigger, DOM model will cause more latency than SAX. Anyone can confirm if this was fixed in latest Rampart/Axis2 versions? [1] https://stackoverflow.com/questions/6828703/what-is-the-difference-between-sax-and-dom [2] https://www.ibm.com/developerworks/library/j-jws6/index.html Thanks. -- -- Lahiru Sandaruwan Associate Technical Lead, WSO2 Inc., http://wso2.com lean.enterprise.middleware m: +1 901 530 2379 e: lahi...@wso2.com b: https://medium.com/@lahirugmg in: http://lk.linkedin.com/pub/lahiru-sandaruwan/16/153/146
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev