Just leave out all SignedParts + SignedElements policies. The Timestamp will be signed by default by the AsymmetricBinding.
Colm. On Mon, Mar 3, 2014 at 2:37 PM, rn@dev <[email protected]>wrote: > I need to sign only Timestamp, how can I do this with same policy? > > I am trying with > <wsp:Policy> > <sp:SignedElements> > > <sp:XPath>/*[namespace-uri()='http://schemas.xmlsoap.org/soap/envelope/' > and > local-name()='Envelope']/*[namespace-uri()='http://schemas.xml > soap.org/soap/envelope/' > and > > local-name()='Header']/*[namespace-uri() > =' > http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity- > secext-1.0.xsd' and > > local-name()='Security']/*[namespace-uri()='http: > // > docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility- > 1.0.xsd' and > local-name()='Timestamp'] > </sp:XPath> > <sp:XPath>/*[namespace-uri()=' > http://www.w3.org/2003/05/soap-envelope' > and > > local-name()='Envelope']/*[namespace-uri()='http://www.w3.org/2003/05/ > soap-envelope' and > > local-name()='Header']/*[namespace-uri()='http:// > > docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0 > .xsd' and > > local-name()='Security']/*[namespace-uri()='http://docs.oasis > - > open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd' > and > local-name()='Timestamp'] > </sp:XPath> > </sp:SignedElements> > <sp:EncryptedParts> > <sp:Body /> > </sp:EncryptedParts> > </wsp:Policy> > > but looks like something I m missing here? > > Thanks. > > > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/UserName-Token-Signature-and-Timestamp-profile-tp5740670p5740720.html > Sent from the cxf-user mailing list archive at Nabble.com. > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
