I just need to create the security header with a Timestamp and the BST,
without signing or encrypting... I found this topic ( x 509 security token
<http://cxf.547215.n5.nabble.com/x-509-security-token-td5150380.html> )
that seems to be more in the direction I need, so I have started chasing
it...
But now I am hitting an assertion: *HttpsToken could not be asserted: Not an
HTTPs connection*
The URL of the web service I am connecting to is HTTP://, not HTTPS://, but
I cannot seem to change HttpsToken to HttpToken, even if I include older
ws-security schemas that did have HttpToken.
Am I on the right track? How can I get past this? Here is my policy:
/
<wsdl:binding name="{method}Soap" type="tns:{method}Soap">
<wsp:PolicyReference URI="#{method}SupportingTokenPolicy" />
....
</wsdl:binding>
....
<wsp:Policy wsu:Id="{method}SupportingTokenPolicy">
<wsp:ExactlyOne>
<wsp:All>
<sp:TransportBinding>
<wsp:Policy>
<sp:TransportToken>
<wsp:Policy>
<sp:HttpsToken>
<wsp:Policy/>
</sp:HttpsToken>
</wsp:Policy>
</sp:TransportToken>
<sp:Layout>
<wsp:Policy>
<sp:Lax />
</wsp:Policy>
</sp:Layout>
<sp:IncludeTimestamp />
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic128 />
</wsp:Policy>
</sp:AlgorithmSuite>
</wsp:Policy>
</sp:TransportBinding>
<sp:SupportingTokens>
<wsp:Policy>
<sp:X509Token
sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient";>
<wsp:Policy>
<sp:WssX509V3Token10 />
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:SupportingTokens>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
/
Thanks again for everyone's help.
--
View this message in context:
http://cxf.547215.n5.nabble.com/CXF-client-to-NET-web-service-attempting-to-create-BinarySecurityToken-BST-tp5726168p5726189.html
Sent from the cxf-user mailing list archive at Nabble.com.
