You should be able to control this via the configuration parameter you specified. You could put a breakpoint on the line and see if the value you are configuring is being picked up or not:
https://github.com/apache/cxf/blob/12873b9257b5de85f819346ab2325738e3f80206/rt/ws/security/src/main/java/org/apache/cxf/ws/security/wss4j/AbstractWSS4JInterceptor.java#L177 Colm. On Wed, Jun 16, 2021 at 2:54 PM Elvedin Sinanovic <elvedin.sinano...@informica.ba> wrote: > > Hi, > > When a SOAP message arrives with a timestamp greater than 5 minutes in the > past, > the server throws an exception "The Message has expired". I want to extend > that time > from five minutes to at least 10, or any other value that we agree to > internally. I need > to change the processing of all inbound tokens to allow for more time before > the > message expires. > Can that be changed at all? If it can be changed, what is the actual > parameter that > I need to change? Which configuration file do I need to change? What do I > need to write > exactly to change that parameter? > > Thanks in advance, > > Elvedin > > On 2021/06/16 08:48:13, Colm O hEigeartaigh <cohei...@apache.org> wrote: > > Hi, > > > > The CXF configuration property "ws-security.usernametoken.timeToLive" > > just refers to how an incoming UsernameToken timestamp is processed. > > It doesn't change anything for an outbound token. Is this what you > > want? If so it seems like a configuration issue with Wildfly, maybe > > someone on the CXF user list can help with that. > > > > Colm. > > > > On Tue, Jun 15, 2021 at 1:05 PM Elvedin Sinanović > > <elvedin.sinano...@informica.ba> wrote: > > > > > > Hello, > > > > > > I'm trying to extend the time to live of a SOAP message with > > > UsernameToken in the security header from 5 minutes to at least 10. > > > In my research so far I have found out that I need to change the > > > parameter "ws-security.usernametoken.timeToLive", > > > and maybe also "ws-security.usernametoken.futureTimeToLive". > > > But I don't know which file I need to change in my project. The project > > > uses WS-SecurityPolicy-based policy, > > > the option with UsernameToken with timestamp, nonce and password hash. > > > I just need to know which file I need to change and the exact syntax I > > > need to use to change the parameter to the value I need. > > > The web-service is hosted on wildfly-10.0.0.Final web server. > > > This is a list of configuration files in my project: > > > - server.properties (main/java folder) > > > - Tried using : > > > "org.apache.cxf.ws.security.usernametoken.timeToLive=600" > > > - server-endpoint-config (WEB-INF folder) > > > - Tried using : > > > > > > " > > > <property> > > > > > > <property-name>ws-security.usernametoken.timeToLive</property-name> > > > <property-value>600</property-value> > > > </property> > > > " > > > > > > - Service.wsdl (WEB-INF folder) > > > - Schema.xsd (WEB-INF folder) > > > - jboss-deployment-structure.xml (WEB-INF folder) > > > - web.xml (WEB-INF folder) > > > - module.xml (wildfly/modules folder) > > > - service.properties (wildfly/modules folder) > > > If anyone can help me with this issue, I would be really grateful. > > > > > > Best regards, > > > > > > Elvedin Sinanović. > > > > >
