Hi, I would like to implement the following scenario:
1. Rampart checks WS-Security (the normal case) 2. A specific handler receives the complete SOAP Envelope (i.e. SOAP Header with Security element and SOAP Body). 3. This handler checks the subject of the certificate used for WS-Security with the value of an element contained in the SOAP Body. 4. If there is a match between the subject of the certificate and the value of the element, everything proceeds as normal. 5. If there is a mismatch between the subject of the certificate and the value of the element, a SOAP Fault is generated. When activating the rampart module, I have the impression that it is not possible to add a specific handler before rampart treats the message. When adding the handler after the SecurityHandler, the MessageContext no longer contains the security headers (removed by the SecurityHandler?). Is it possible to implement the above scenario and if yes, how? Regards, Stefan Lecho. -- View this message in context: http://www.nabble.com/Is-it-possible-to-check-the-certificate-used-for-signature-with-body-content---tp26108410p26108410.html Sent from the Axis - User mailing list archive at Nabble.com.