WS-SecurityPolicy #310

brett-beaumont · 2021-11-09T04:12:03Z

brett-beaumont
Nov 9, 2021

Does this extension support WS-SecurityPolicy? If so, do you have any hints for how to set this up? I have the WSS4J interceptor enabled and running to check signatures, but I really want the rest of policy enabled as well - for example, checking that the whole message is signed.

Thanks,
Brett

shumonsharif · 2021-11-09T11:53:04Z

shumonsharif
Nov 9, 2021
Maintainer

Hi Brett, yes, WS-SecurityPolicy should work, and what you're describing can be easily configured as per the docs using the DefaultCryptoCoverageChecker interceptor.

https://quarkiverse.github.io/quarkiverse-docs/quarkus-cxf/dev/ws-security.html
https://cxf.apache.org/docs/ws-security.html

Is there a specific issue you're running into? If so, please feel free to share a reproducer we can look at.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

WS-SecurityPolicy #310

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 1 comment

{{title}}

Select a reply

WS-SecurityPolicy #310

brett-beaumont Nov 9, 2021

Replies: 1 comment

shumonsharif Nov 9, 2021 Maintainer

brett-beaumont
Nov 9, 2021

shumonsharif
Nov 9, 2021
Maintainer