Hello,
have you figured our a solution for policy-first cases? I'm currently testing with jbossws-cxf 3.4 and it seems that when the policy interceptor analyzes the policy it puts the PolicyBasedWSS4JInInterceptor first in the chain, which makes the SubjectCreatingInterceptor useless.
I'm currently playing around with the WSSecurityPolicyLoader, in order to remove the PolicyBasedWSS4JInInterceptor interceptor and add a new one that would be a mix between the PolicyBasedWSS4JInInterceptor and SubjectCreatingInterceptor, but it seems a bit over-complicated.
Thanks,
Riccardo.