[jira] [Updated] (RAMPART-286) Support for WS Policy optionality on WS Security assertions

Robert Lazarski (Jira) Fri, 01 Nov 2024 13:36:04 -0700


     [ 
https://issues.apache.org/jira/browse/RAMPART-286?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Robert Lazarski updated RAMPART-286:
------------------------------------
    Fix Version/s: 2.0.0

> Support for WS Policy optionality on WS Security assertions
> -----------------------------------------------------------
>
>                 Key: RAMPART-286
>                 URL: https://issues.apache.org/jira/browse/RAMPART-286
>             Project: Rampart
>          Issue Type: New Feature
>            Reporter: Prabath Siriwardena
>            Assignee: Robert Lazarski
>            Priority: Major
>             Fix For: 2.0.0
>
>
> Support for WS Policy "Optional" attribute on the following WS Security 
> Policy assertions: 
> 1. <sp:IncludeTimestamp> 
> 2. <sp:UsernameToken> 
> 3. <sp:SignedParts> / <sp:Body> 
> 4. <sp:EncryptedParts> / <sp:Body> 
> 5. <sp:SupportingTokens> / <sp:X509Token> 
> The optional processing would instruct the Rampart Policy-based validation to 
> skip validating any of the above policy assertions if they are marked as 
> optional, for example if having an optional UsernameToken: 
> <wsp:Policy ...> 
>     <sp:UsernameToken wsp:Optional="true" .../> 
> </wsp:Policy> 
> and request does not contain an UsernameToken, no error should be generated.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Updated] (RAMPART-286) Support for WS Policy optionality on WS Security assertions

Reply via email to