Actually on thinking about this a bit more, I'll revert on 2.4 and 2.5. Colm.
On Wed, Feb 15, 2012 at 1:01 PM, Colm O hEigeartaigh <[email protected]> wrote: > It could do, but in that case the existing applications are using > policies that are not compliant with the WS-SecurityPolicy 1.2 or 1.3 > specs. I don't have a strong opinion about it though, I can revert on > 2.4.x if you want. > > Colm. > > On Wed, Feb 15, 2012 at 12:42 PM, Daniel Kulp <[email protected]> wrote: >> >> >> Colm, >> >> I'm a bit concerned about pushing this back onto the 2.4 branch (slightly >> less concerned about 2.5). This could cause existing applications to stop >> working as they may have policies that don't meet the stricter parsing. >> >> Right? >> >> Dan >> >> >> On Wednesday, February 15, 2012 12:37:35 PM [email protected] wrote: >>> Author: coheigea >>> Date: Wed Feb 15 12:37:34 2012 >>> New Revision: 1244464 >>> >>> URL: http://svn.apache.org/viewvc?rev=1244464&view=rev >>> Log: >>> Adding stricter SecurityPolicy parsing >>> >>> Conflicts: >>> >>> >> rt/ws/security/src/main/java/org/apache/cxf/ws/security/policy/builders/X50 >>> 9TokenBuilder.java >>> >>> >>> Conflicts: >>> >>> >> rt/ws/security/src/main/java/org/apache/cxf/ws/security/policy/builders/Asy >>> mmetricBindingBuilder.java >>> rt/ws/security/src/main/java/org/apache/cxf/ws/security/policy/builders/Sym >>> metricBindingBuilder.java >>> rt/ws/security/src/main/java/org/apache/cxf/ws/security/policy/builders/X50 >>> 9TokenBuilder.java >>> systests/ws-security/src/test/resources/org/apache/cxf/systest/ws/policy/cl >>> ient/client.xml >>> systests/ws-security/src/test/resources/org/apache/cxf/systest/ws/policy/se >>> rver/server.xml >>> >>> Modified: >>> >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/AlgorithmSuiteBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/AsymmetricBindingBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/EncryptedPartsBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/HttpsTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/IssuedTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/KerberosTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/KeyValueTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/LayoutBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/RequiredPartsBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/SamlTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/SecureConversationTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/SecurityContextTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/SignedPartsBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/SpnegoContextTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/SymmetricBindingBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/TransportBindingBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/UsernameTokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/main/java/org/apache/cxf/ws/sec >>> urity/policy/builders/X509TokenBuilder.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/test/java/org/apache/cxf/ws/sec >>> urity/wss4j/PolicyBasedWss4JInOutTest.java >>> cxf/branches/2.4.x-fixes/rt/ws/security/src/test/resources/org/apache/cxf/w >>> s/security/wss4j/signed_elements_with_sst_issued_token_policy.xml >>> cxf/branches/2.4.x-fixes/systests/ws-security-examples/src/test/resources/o >>> rg/apache/cxf/systest/wssec/examples/ut/DoubleItUt.wsdl >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/kerberos/DoubleItKerberos.wsdl >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/saml/DoubleItSaml.wsdl >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/saml/client/client.xml >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/saml/server/server.xml >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/ut/DoubleItUt.wsdl >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/ut/client/client.xml >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/ut/server/server.xml >>> cxf/branches/2.4.x-fixes/systests/ws-security/src/test/resources/org/apache >>> /cxf/systest/ws/x509/DoubleItX509.wsdl >>> >>> Modified: >> -- >> Daniel Kulp >> [email protected] - http://dankulp.com/blog >> Talend Community Coder - http://coders.talend.com > > > > -- > Colm O hEigeartaigh > > Talend Community Coder > http://coders.talend.com -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
