[ https://issues.apache.org/jira/browse/AXIS2C-1024?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
S.Uthaiyashankar updated AXIS2C-1024: ------------------------------------- Component/s: neethi > Neethi does not support ExactlyOne to allow using OR when defining two tokens > where only one or the other is desired > -------------------------------------------------------------------------------------------------------------------- > > Key: AXIS2C-1024 > URL: https://issues.apache.org/jira/browse/AXIS2C-1024 > Project: Axis2-C > Issue Type: New Feature > Components: neethi, rampart > Affects Versions: Current (Nightly) > Environment: Windows XP. > Reporter: Dave Meier > > The spec I'm looking at is > http://specs.xmlsoap.org/ws/2005/07/securitypolicy/ws-securitypolicy.pdf in > section 4.1.1. > The spec shows how to OR things together in the policy, but when I tried that > it in rampart/c it didn't work. Here's what I tried (showing just the > SignedSupportingTokens: > <sp:SignedSupportingTokens > xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> > <wsp:Policy> > <wsp:ExactlyOne> > <sp:UsernameToken > sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/> > <sp:SamlToken > sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/> > </wsp:ExactlyOne> > </wsp:Policy> > </sp:SignedSupportingTokens> > This should accept either UsernameToken or SamlToken. > Also tried the following without success: > <sp:SignedSupportingTokens > xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> > <wsp:Policy> > <wsp:All> > <wsp:ExactlyOne> > <sp:UsernameToken > sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/> > <sp:SamlToken > sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/> > </wsp:ExactlyOne> > </wsp:All> > </wsp:Policy> > </sp:SignedSupportingTokens> -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.