Hi,
We have a service endpoint spring configuration like this:
<jaxws:endpoint id="testService"
implementor= ... >
<jaxws:features>
<wsa:addressing
xmlns:wsa="http://cxf.apache.org/ws/addressing"/>
<p:policies>
<wsp:Policy>
<wsp:ExactlyOne>
<wsp:All>
<wsp:PolicyReference
URI="token.policy"/>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
</p:policies>
</jaxws:endpoint>
The token.policy as this:
<wsp:Policy wsu:Id="UsernameToken" xmlns:wsu=
"http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd";
xmlns:wsp="http://www.w3.org/ns/ws-policy";
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702";>
<wsp:ExactlyOne>
<wsp:All>
<sp:SupportingTokens>
<wsp:Policy>
<sp:UsernameToken
sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient"/>
</wsp:Policy>
</sp:SupportingTokens>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
We just want to enable both WS-Addressing feature and UsernameToken security
policy. But from the Message content we have intercepted, seems no Addressing
headers found in the soap message.
<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/";>
<soap:Header>
<wsse:Security soap:mustUnderstand="1"
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd";>
<wsse:UsernameToken
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd";
wsu:Id="UsernameToken-3">
<wsse:Username>testuser</wsse:Username>
<wsse:Password
Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText";>testpwd</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>
</soap:Header>
<soap:Body>
<isdx:echo
xmlns:isdx="http://services.sopware.org/demo/Whiteboard";><value>hi!</value></isdx:echo>
</soap:Body>
</soap:Envelope>
Have I missed something? How to get both WS-Addressing and Security take
effect?
(the CXF version used is 2.5.0)
Thanks!
Xilai
