[
https://issues.apache.org/jira/browse/RAMPART-109?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Nandana Mihindukulasooriya updated RAMPART-109:
-----------------------------------------------
Attachment: RAMPART-109-2.patch
Previous patch fails in a scenario where no-timestamp, encrypt signature and
server side ( no encrypted key element). Encrypt signature is a special case
because when the signature is encrypted, signature element is lost. So if we
have set insertion location to signature element it is lost when the signature
is encrypted. So we perpend the reference list to the security header in the
above scenario.
> Error in placement of reference list in No-Timestamp scenarios
> --------------------------------------------------------------
>
> Key: RAMPART-109
> URL: https://issues.apache.org/jira/browse/RAMPART-109
> Project: Rampart
> Issue Type: Bug
> Components: rampart-core
> Reporter: Nandana Mihindukulasooriya
> Assignee: Nandana Mihindukulasooriya
> Attachments: RAMPART-109-2.patch, RAMPART-109.patch
>
>
> When a symmetric binding is used and there is no time stamp, Rampart places
> reference list after the signature in sign before encrypt scenarios.
> Reference list first come first in sign before encrypt scenarios.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
