Hi Colm, hi Andrei,
with the fix the Enc-Element in the response message contains now
KeyIdentifier data.
Thanks.
Best regards
Kai
2014-05-19 12:42 GMT+02:00 Colm O hEigeartaigh :
> There is some inconsistency in how CXF handles token referencing between
> the initiator + recipient sides for
The scenario:
Idp/STS: Microsoft ADFS 2.0
Service provider: Shibboleth SP
CXF: 2.7.8
The client logs on (with a domain username/pwd) to the web site. Once logged
on the user can call a webservice that is WS-trust configured.
Using the ADFS policy/endpoint “../adfs/services/trust/13/usernamemix
Aki Yoshida-3 wrote
> I was wondering why you can't (or don't want to) configure the
> http.proxy setting once per VM.
Some connections are with applications in external networks - here we need
the proxy - and some with others in the same network. Also, our web app may
invoke itself in certain sce
Is this when validating a signed SAML Token? In this case, the warning is a
bit misleading, as cert constraint validation happens in the STS itself
rather than in WSS4J, where the warning is logged. You can inject a
CertConstraintsParser object into the SAMLTokenValidator, which itself
contains a c
There is some inconsistency in how CXF handles token referencing between
the initiator + recipient sides for X.509 tokens, which I've since fixed.
Colm.
On Fri, May 16, 2014 at 1:07 PM, Kai Rommel wrote:
> Hi Colm,
> I set up a scenario and was wondering about the KeyInfo elements.
>
>
> Policy
moving this thread to users@cxf.
for CXF usage questions, please use users@cxf list.
you can find the answer to your question here.
http://cxf.apache.org/docs/debugging-and-logging.html#DebuggingandLogging-Stacktraceinfaultdetails
it describes how to get more exception information included in t
Hi,
Perhaps the X509 certificate is included into request message (because of
includeToken=http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient)
and encryption part just refers him.
For response message certificate is not included
(includeToken=http://docs.oa
