Security Policy 1.2 supports encrypted supported tokens. Can you please try using that ?
thanks, nandana On Fri, Nov 21, 2008 at 2:41 PM, Stefano Puri <[EMAIL PROTECTED]>wrote: > Hi, > > I have a policy with a SAML defined as supporting token. I would like > to protect this token with encryption: > does anyone know if Rampart supports encryption of SAML supporting token? > > For instance at the client side (message outflow) I am trying to use the > > <sp:EncryptedElements> > > element in the policy to refer to the SAML token but it doens't seem to > work. > > Also I am wondering if during the message inflow, Rampart would be > able to verify the <sp:EncryptedElements> policy statement for the > incoming message and then decrypt and check for the SAML supporting > token existence. > > Thank you in advance. > Stefano. > > > LEGAL DISCLAIMER: > The contents of this email and any transmitted files are confidential and > intended solely for the use of the individual or entity to whom they are > addressed. We hereby exclude any warranty and any liability as to the > quality or accuracy of the contents of this email and any attached > transmitted files. If you are not the intended recipient, be advised that > you have received this email in error and that any use, dissemination, > forwarding, printing or copying of this email is strictly prohibited. If you > have received this email in error please contact the sender and delete the > material from any computer. > -- Nandana Mihindukulasooriya WSO2 inc. http://nandana83.blogspot.com/ http://www.wso2.org
