Policy validation of ProtectionOrder
------------------------------------
Key: RAMPART-21
URL: https://issues.apache.org/jira/browse/RAMPART-21
Project: Rampart
Issue Type: Bug
Environment: Client/Server : Axis2 1.1, Rampart 1.1, WSS4J 1.5.1.
Java 1.5 Max OSX
Reporter: Hans G Knudsen
Hi!
Testing the Policy for Protection order with :
Service Policy == SignBeforeEncrypt
Client Message == EncrypteBeforeSign
by setting :
<sp:EncryptBeforeSigning/>
in the client - the server does not detect that EncryptBeforeSign was used...
In the policy test PolicyBasedResultsValidator the 'getSigEncrActions' has 3
elements
Encrypt, Sign, Encrypt
and thereby has the Encrypt after SIgn. No test is made on the first Encrypt...
I have not had time to investigate if
- The message sent has wrong format
- The parsing/detection is wrong.
- ...
/hans
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
