I would like to be able to specify allowed algorithms for signing elements. One would think a policy containing elements below would suffice:
<sp:SupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> <wsp:Policy> <sp:SignedElements xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/“ xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";> <sp:XPath>/soapenv:Envelope/soapenv:Body</sp:XPath> </sp:SignedElements> <sp:AlgorithmSuite> <wsp:Policy> <sp:Basic256Sha256 /> </wsp:Policy> </sp:AlgorithmSuite> </wsp:Policy> </sp:SupportingTokens> But this is not the case, as SHA1 signed elements are not being filtered out. Is there something missing from the policy, or is this functionality not supported from Rampart via policies? --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
