I don't understand your question. No you should not assert a UsernameToken if an X.509 token was checked. You assert the policies depending on what was received, and let the CXF policy runtime figure out what policy alternative was satisfied. If you are using an old version of CXF (e.g. 2.6.x) then you might want to upgrade, as there were fixes a while back to how policy alternatives are handled.
Colm. On Fri, Oct 31, 2014 at 6:29 AM, SRog <[email protected]> wrote: > Hi, > Okay I could insert the policies with the assert Method but why there is no > x.509 in the supporting tokens? The same problem with wsdl policy > description here? > Should I assert an usernametoken if x.509 token was checked? > > > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/Username-PWD-on-STS-tp5750076p5750512.html > Sent from the cxf-user mailing list archive at Nabble.com. > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
