Hi, Using CXF 2.4.6 in JBoss EAP 6, I'm securing my web services with WS-Security (no WS-SecurityPolicy as the algorithm suite is not supported there).
For this, I have configured WSS4JInInterceptors and WSS4JOutInterceptors on both client and server, and the setup works. To check if incoming messages are signed, encrypted, and with timestamp token, I also have configured a CryptoCoverageChecker on both client and server. Now I have the problem that I cannot obtain Fault answers from the server on the client any more because the CryptoCoverageChecker kicks in and I don't have a chance to access the SOAPFaultException from the server. The server doesn't sign and encrypt Fault answers (which is ok, and this is the case also when using easy WS-SecurityPolicy configurations). How can I configure the CryptoCoverageChecker to only check regular (non-fault) web service responses? Or how can I configure CXF to only use a CryptoCoverageChecker on non-fault responses? (With WS-SecurityPolicy, this problem seems solved). Thank you, Dirk Lattermann -------------------------------------------------------- DATAGROUP BGS GmbH Dirk Lattermann Auf den Tongruben 3 D-53721 Siegburg Fon: +49 2241 166-531 Fax: +49 2241 166-680 E-Mail: [email protected] http://www.datagroup.de Sie finden uns auch auf: Facebook<https://www.facebook.com/#!/datagroupag/> | Xing<https://www.xing.com/companies/datagroupag/updates/> | Google+<https://plus.google.com/s/datagroup#112017044868465108697/posts> | LinkedIn<http://www.linkedin.com/company/datagroup-ag/> | Kununu<http://www.kununu.com/de/all/de/it/datagroup/> Geschäftsführung: Hans-Hermann Schaber Amtsgericht Mainz, HRB 44217 DATAGROUP ist als einer von wenigen IT-Dienstleistern zertifiziert nach ISO 20000, der höchstmöglichen Auszeichnung für professionelles IT Service Management.
