Jens,
Yes, :-( I missed that... Actually we have a sample on this as well [1]
:-(
[1] - http://synapse.apache.org/Synapse_Samples.html#Sample153
Thanks,
Ruwan
Jens Goldhammer wrote:
Hello Ruwan,
as we found out, there are some scenarios where this behavior makes
sense. For example, Synapse can pass messages with security enabled
without processing it. I think, the default case should be that
Synapse throws an error if a message contains security-headers which
cannot be processed. The other way round you can explicit specify that
Synapse should secure this proxy. In this case Synapse throws the
error correctly...
Maybe this can be left as it is, but this should be better documented.
Thanks,
Jens
Ruwan Linton schrieb:
Hi Jens,
Another hint:
If I do not activate security on a proxy and I am sending a message
to that proxy with security headers and a mustUnderstand="1", IMO
Synapse has to throw a fault that it cannot handle this message
because It does not validate the message headers, or I am wrong??
Yes Jens, you are absolutely correct on this assumption... :-)
Thanks,
Ruwan
_______________________________________________
Esb-java-user mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/esb-java-user
