What is the complete stack trace? A test-case with a sample cert to reproduce the problem would be helpful.
Colm. On Wed, Sep 16, 2020 at 2:31 AM Puri, Amanleen <ap...@visa.com> wrote: > Hi, > > I am using wss4j 2.3.0 to validate signature > (wss4j-ws-security-dom-2.3.0.jar). However, the CA cert I use to initialize > my crypto object does not have Subject Type and other basic constraints. > Hence the signature validation fails with the following exception. The same > cert worked in wss4j 1.5. > > > > #Exception: java.security.cert.CertPathValidatorException: basic > constraints check failed: this is not a CA certificate > > > > #Ask: Is there a way I could disable basic constraints check in wss4j > 2.3.0? > > > > I’m calling , engine.processSecurityHeader where engine is an object of > WSSecurityEngine. > > > > Looking forward to hearing from you. > > > > Best, > > Amanleen >
