[
https://issues.apache.org/jira/browse/WSS-712?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Bryan Brouckaert updated WSS-712:
---------------------------------
Flags: Patch
Labels: pull-request-available (was: )
> SignatureDigestAlgorithm of SAMLCallback not taken into account
> ---------------------------------------------------------------
>
> Key: WSS-712
> URL: https://issues.apache.org/jira/browse/WSS-712
> Project: WSS4J
> Issue Type: Bug
> Components: WSS4J Core
> Affects Versions: 3.0.3
> Reporter: Bryan Brouckaert
> Assignee: Colm O hEigeartaigh
> Priority: Major
> Labels: pull-request-available
>
> The SAML_TOKEN_UNSIGNED-action, implemented by the
> {{org.apache.wss4j.dom.action.SAMLTokenUnsignedAction}} class doesn't take
> into account theĀ
> {{SignatureDigestAlgorithm}} property of the
> {{org.apache.wss4j.common.saml.SAMLCallback}}.
> It uses the
> {{org.apache.wss4j.common.saml.SamlAssertionWrapper#signAssertion(java.lang.String,
> java.lang.String, org.apache.wss4j.common.crypto.Crypto, boolean,
> java.lang.String, java.lang.String)}} methods that always uses the default
> SignatureDigestAlgorithm.
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@ws.apache.org
For additional commands, e-mail: dev-h...@ws.apache.org
