BinarySecurityToken validated by STSTokenValidator doesn't satisfy IssuedToken
policy
-------------------------------------------------------------------------------------
Key: CXF-3624
URL: https://issues.apache.org/jira/browse/CXF-3624
Project: CXF
Issue Type: Bug
Components: WS-* Components
Affects Versions: 2.4.1
Reporter: Oliver Wulff
I've configured a JAX-WS endpoint to validate a BinarySecurityToken sent in the
WS-Security Header against an STS like this:
<entry key="ws-security.bst.validator">
<bean class="org.apache.cxf.ws.security.trust.STSTokenValidator"/>
After successful validation, I get the following exception on the server side:
Jun 30, 2011 10:57:21 AM org.apache.cxf.phase.PhaseInterceptorChain
doDefaultLogging
WARNING: Interceptor for
{http://www.example.org/contract/DoubleIt}DoubleItService#{http://www.example.org/contract/DoubleIt}DoubleIt
has thrown exception, unwinding now
org.apache.cxf.interceptor.Fault: These policy alternatives can not be
satisfied:
{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}IssuedToken
at
org.apache.cxf.ws.policy.AbstractPolicyInterceptor.handleMessage(AbstractPolicyInterceptor.java:47)
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
