Hi,
I'm new with the wss4j project, slightly less new with
the Web Services Security, and first my greetings to
the team.
I was playing with wss4j trying to run the interop test
scearios against the Layer7 product - WS-Security firewall.
The goal was to use the SAML SOAP token profile interop
scenarios as client against the engine.
And at the end everything worked fine - Layer7 uses a
different xml security library, and have a homegrown saml
api.
I did find what I think is a small bug in the STRTransfrom
class.
It appears that the Canonicalizer instance need to be recreated
for the next operation. It appears it keeps some state from
the previous call in the same method, resulting in wrong
output after the second call.
After I applied the patch in the attachment, I had a wss4j
interop tests producing signed SAML tokens and Layer7 engine
consuming them without problem.
Best Regards,
Emil Marceta
str.transform.patch
Description: str.transform.patch
