Hi all,
After upgrade from CXF from 2.6.2 to 2.7.7, I found that my customer
UsernameTokenValidator is no longer invoked.
Anyone know why? Another compatibility issue?
It is configured through applicationContext:
<cxf:bus>
.....
<cxf:properties>
<entry key="ws-security.ut.validator"
value-ref="serviceUsernameTokenValidator" />
<entry key="ws-security.callback-handler"
value-ref="servicePasswordCallbackHandler"/>
<entry key="ws-security.signature.properties"
value="serviceKeystore.properties"/>
<entry key="ws-security.timestamp.validator"
value="org.apache.ws.security.validate.NoOpValidator" />
<entry key="ws-security.enable.nonce.cache" value="false" />
<entry key="ws-security.enable.timestamp.cache" value="false" />
<entry key="timeToLive" value="1147483"/>
<entry key="futureTimeToLive" value="1147483"/>
<entry key="timestampStrict" value="false"/>
<entry key="ws-security.is-bsp-compliant" value="false"/>
</cxf:properties>
</cxf:bus>
Thanks,
Jason
