Thanks, I've fixed the other BSP issue in WSS4J. I don't think your change to the IssuedTokenPolicyValidator should be necessary. The SamlAssertionWrapper in WSS4J now tries to parse the Subject KeyInfo for the non-HolderOfKey case. So there should be a SubjectKeyInfo there ready for validation, for the sender-vouches case. Could you debug into the code here and let me know why it is not working?
Colm. On Wed, Feb 19, 2014 at 10:31 PM, bimjoeipa <[email protected] > wrote: > Hi Colm, > > What do you suggest about my original problem of validating the "PublicKey" > KeyType? Is my suggestion of "else if (content.endsWith("PublicKey") && > OpenSAMLUtil.isMethodHolderOfKey(confirmMethod))" in > > org.apache.cxf.ws.security.wss4j.policyvalidators.IssuedTokenPolicyValidator.checkIssuedTokenTemplate > a valid solution? > > Thanks, > > Joel > > > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/CXF-Service-can-t-process-PublicKey-SAML-Sender-Vouches-IssuedToken-in-WS-Policy-tp5739904p5740199.html > Sent from the cxf-user mailing list archive at Nabble.com. > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
