ws-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Colm O hEigeartaigh (JIRA)" <j...@apache.org>
Subject [jira] [Closed] (WSS-406) Add the ability to define which algorithms are acceptable when processing a security header
Date Tue, 04 Dec 2012 12:17:02 GMT

     [ https://issues.apache.org/jira/browse/WSS-406?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Colm O hEigeartaigh closed WSS-406.
-----------------------------------

    
> Add the ability to define which algorithms are acceptable when processing a security
header
> -------------------------------------------------------------------------------------------
>
>                 Key: WSS-406
>                 URL: https://issues.apache.org/jira/browse/WSS-406
>             Project: WSS4J
>          Issue Type: Improvement
>    Affects Versions: 1.6.7
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: 1.6.8
>
>
> This task is to add the ability to define which algorithms are acceptable when processing
a security header. In WS-SecurityPolicy, you can define an "AlgorithmSuite" (e.g. sp:Basic128)
which describes which algorithms must be used. Currently there is no way to enforce this in
WSS4J.
> An AlgorithmSuite class will be added to WSS4J, which a third party library can populate.
This will hold acceptable values for things like signature method, digest, c14n algorithms
etc., as well as key sizes, and encryption symmetric and key wrapping algorithms etc. If WSS4J
encounters an Element that does not match one of these values then an exception is thrown.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org


Mime
View raw message