Hello
No, I am not. And my request was because there are many Web Services
that don't actually require any security policy (stock ticker, weather,
...) and it's a pity to require to have it if not needed.
More importantly, org.apache.ws.security is already marked as optional.
Only org.apache.xml.security is not...
Cheers
S. Ali Tokmen
[email protected]
Office: +33 4 76 29 76 19
GSM: +33 66 43 00 555
Bull, Architect of an Open World TM
http://www.bull.com
Le 04/03/2010 13:09, Glen Mazza a écrit :
Unsure, but I think that is marked as mandatory so that WS-SecurityPolicy
will be activated by default (out-of-the-box). Are you using security
policy statements in your WSDL? If not, that might be why CXF is working
for you without that dependency.
Glen
S. Ali Tokmen-4 wrote:
Hello
In its version 2.2.6, the cxf-bundle-minimal has a certain number of
imports; some of them are optional and some other mandatory.
One that's mandatory is org.apache.xml.security, but I have the
impression that it actually is not: I've modified the bundle so this
dependency is optional, and it still is working very well in my use cases.
More interestingly, org.apache.ws.security* is already marked as
resolution:=optional (see
https://svn.apache.org/repos/asf/cxf/tags/cxf-2.2.6/distribution/bundle/minimal/pom.xml
where it's clearly visible)
Would it be possible to also mark the import of org.apache.xml.security*
as optional as well?
Cheers
--
S. Ali Tokmen
[email protected]
Office: +33 4 76 29 76 19
GSM: +33 66 43 00 555
Bull, Architect of an Open World TM
http://www.bull.com
