[prev in list] [next in list] [prev in thread] [next in thread]
List: xmlrpc-user
Subject: Re: Ordering of the security headers
From: Colm O hEigeartaigh <coheigea () apache ! org>
Date: 2012-06-21 13:03:28
Message-ID: CAB8XdGDCBgMw7p0d+sp6KifOJc+n42nXbWL6p__SePRWCfHreA () mail ! gmail ! com
[Download RAW message or body]
> Is there a way to force a specific ordering of the Security Headers?
No, there isn't. The "old" way of configuring security "actions" (as
applies to WSS-147) is essentially deprecated in WSS4J 1.6 in favour of
using a WS-SecurityPolicy implementation (Apache CXF, Apache Rampart, etc.)
that orders things correctly.
Colm.
On Thu, Jun 21, 2012 at 1:56 PM, massimiliano.masi@gmail.com <
massimiliano.masi@gmail.com> wrote:
> Hi All,
>
> Is there a way to force a specific ordering of the Security Headers?
>
> I have the Security Policy layout, and I've an interoperability problem
> with metro,
> which requires to have the security headers ordered as:
>
> <Security>
> <Timestamp id=1>
> <saml2:Assertion>
> <Signature of 1>
> <KeyInfo>
> <SecurityTokenReference ValueType="#SAMLID">
>
> I can do them using DOM, but this means to process the security header
> twice.
> I saw this: https://issues.apache.org/jira/browse/WSS-147 but doesn't
> help me :-(
>
> Thanks a lot,
>
> Massi
>
>
> --
> Massimiliano Masi
>
> http://www.mascanc.net/~max
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com
[Attachment #3 (text/html)]
<div><br></div><div>> Is there a way to force a specific ordering of the Security \
Headers?<br><br>No, there isn't. The "old" way of configuring security \
"actions" (as applies to WSS-147) is essentially deprecated in WSS4J 1.6 in \
favour of using a WS-SecurityPolicy implementation (Apache CXF, Apache Rampart, etc.) \
that orders things correctly.<br> <br>Colm.<br></div><br><br><br><div \
class="gmail_quote">On Thu, Jun 21, 2012 at 1:56 PM, <a \
href="mailto:massimiliano.masi@gmail.com">massimiliano.masi@gmail.com</a> <span \
dir="ltr"><<a href="mailto:massimiliano.masi@gmail.com" \
target="_blank">massimiliano.masi@gmail.com</a>></span> wrote:<br> <blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">Hi All, <div><br></div><div>Is there a way to force a \
specific ordering of the Security Headers?</div><div><br></div><div> I have the \
Security Policy layout, and I've an interoperability problem with metro, \
</div><div>which requires to have the security headers ordered as: </div> \
<div><br></div><div><Security></div><div> <Timestamp id=1></div><div> \
<saml2:Assertion></div><div> <Signature of 1></div><div> \
<KeyInfo></div><div> <SecurityTokenReference \
ValueType="#SAMLID"></div>
<div><br></div><div>I can do them using DOM, but this means to process the security \
header twice. </div><div>I saw this: <a \
href="https://issues.apache.org/jira/browse/WSS-147" \
target="_blank">https://issues.apache.org/jira/browse/WSS-147</a> but doesn't \
help me :-(</div>
<div><br></div><div>Thanks a lot, </div><div><br></div><div> Massi</div><span \
class="HOEnZb"><font color="#888888"><div><br clear="all"><div><br></div>-- \
<br>Massimiliano Masi<br><br><a href="http://www.mascanc.net/%7Emax" \
target="_blank">http://www.mascanc.net/~max</a><br>
</div>
</font></span></blockquote></div><br><br clear="all"><br>-- <br>Colm O \
hEigeartaigh<br><br>Talend Community Coder<br><a href="http://coders.talend.com" \
target="_blank">http://coders.talend.com</a><br><br>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic