Thanks Jason. I will definitely follow that UsernamePasswordPolicy approach to further enforce that the correct UsernameToken and SSL encryption are being used.
And thank you so much Ivan for that tip with the Validator. That is exactly what I had hoped for. -- View this message in context: http://cxf.547215.n5.nabble.com/WS-Security-UserNameToken-against-encrypted-database-password-tp561377p5729803.html Sent from the cxf-user mailing list archive at Nabble.com.
