[
https://issues.apache.org/jira/browse/RAMPART-278?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Andreas Veithen updated RAMPART-278:
------------------------------------
Fix Version/s: 1.6.0
> PolicyBasedResultsValidator throws exception when headers encrypted before
> signing.
> -----------------------------------------------------------------------------------
>
> Key: RAMPART-278
> URL: https://issues.apache.org/jira/browse/RAMPART-278
> Project: Rampart
> Issue Type: Bug
> Components: rampart-core
> Reporter: todd wolff
> Assignee: Dimuthu Leelarathne
> Fix For: 1.6.0
>
> Attachments: SignedEncryptedHeaders.patch
>
>
> PolicyBasedResultsValidator uses wsu:Id of signed elements to validate that
> headers were signed. If header was encrypted before signing, wsu:Id is id on
> EncryptedHeader element, which was detached from header by WSS4J and replaced
> with the decrypted header. Consequently the check fails and validator
> incorrectly throws an exception.
> Also RampartUtil excludes child text nodes when converting soap header
> blocks, i.e. a header block with a single child text node would be
> incorrectly converted to an empty header block. See attached patch for
> painless fix to both problems.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
