Thanks for response! > > IMHO even if a fault contains a security header then these > headers shouldn't processed. Usually a fault is generated > by the SOAP engine even due to some wrong info (e.g. the > security handler do this) or on behalf of the application > (service) that throws an exception. Thus it is not guaranteed > that the security data is correct or valid.
I agree, but in my case, the fault contained business exception details, which are to be processed by application and not axis/handlers. Not processing such message caused the org.apache.axis.handlers.soap.MustUnderstandChecker to throw an AxisFault, because of not processed wsse:Security soap header. Maybe ther should be a conf-parameter to turn on/off processing soap messages with soap:Faults? With regards Grzegorz Grzybek --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
