Hi Alan, We thought it is good to check what transport is used when Transport binding is used with Https Token. There is JIRA issue for this.
https://issues.apache.org/jira/browse/RAMPART-113 Would it simply be a matter of examining the endpoint string to see if > it defines the https protocol? IFAIK, checking the transport protocol used should simply work. Regards, Nandana > > > Regards, > Alan. > > On Nov 1, 2007 5:16 AM, Nandana Mihindukulasooriya > <[EMAIL PROTECTED]> wrote: > > Hi Allan, > > > > It's using http. Is there no way enforce https, that is not to send > > > the message at all if no https protocol is used? > > > > > > I think your point is valid. I think Rampart should check the incoming > > transport if we have a transport binding with https token. Can you > > create a jira issue for this ? > > > > Regards, > > Nandana > > >
