The "OnlySignEntireHeadersAndBody" policy won't actually sign your custom
SOAP Header. You will need to add a policy to sign the header, e.g.
or
else add a SignedElements policy with an XPath that points to the custom
header.
Colm.
On Fri, Oct 16, 2015 at 7:36 PM, Urciolo, Kevin J (IS) <
kevin.u
I am running the apache-cxf-3.1.3/samples/ws_security/sign_enc_policy sample
client/server code. I modified the policy to only do signature, no encryption.
I was curious to see how a custom SOAP header was handled with
So I added the second section of code below.
System.out.print
