[
https://issues.apache.org/jira/browse/RAMPART-155?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12644847#action_12644847
]
James Robson commented on RAMPART-155:
--------------------------------------
Rampart when acting as a message receiver does not set the WssConfig
handleCustomPasswordTypes property to true if <sp:NoPassword /> is used in the
policy.
org.apache.axis2.AxisFault: The security token could not be authenticated or
authorized
at
org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:166)
...
Caused by: org.apache.ws.security.WSSecurityException: The security token could
not be authenticated or authorized
at
org.apache.ws.security.processor.UsernameTokenProcessor.handleUsernameToken(UsernameTokenProcessor.java:139)
at
org.apache.ws.security.processor.UsernameTokenProcessor.handleToken(UsernameTokenProcessor.java:53)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:311)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:228)
at org.apache.rampart.RampartEngine.process(RampartEngine.java:146)
at
org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92)
... 19 more
> Rampart throws error if it does not find password field in Username Token
> -------------------------------------------------------------------------
>
> Key: RAMPART-155
> URL: https://issues.apache.org/jira/browse/RAMPART-155
> Project: Rampart
> Issue Type: Bug
> Components: rampart-core
> Reporter: Abhay
> Assignee: Nandana Mihindukulasooriya
>
> Hello,
> As per Web Servies Security Username Token profile 1.0. password is an
> optional field in UsernameToken. But, when I try to set to only username in
> token Rampart throws an error, complaining that password is required field.
> Can anyone please fix this ?
> Thanks,
> Abhay
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
