[jbossws-issues] [JBoss JIRA] Reopened: (JBWS-652) Add JAAS certificate authentication support to ws-security implementation
[ http://jira.jboss.com/jira/browse/JBWS-652?page=all ]
Alessio Soldano reopened JBWS-652:
----------------------------------
Assignee: Alessio Soldano
I'm reopening this as the work done for JBWS-1907 actually cover this too.
Add JAAS certificate authentication support to ws-security
implementation
-------------------------------------------------------------------------
Key: JBWS-652
URL: http://jira.jboss.com/jira/browse/JBWS-652
Project: JBoss Web Services
Issue Type: Feature Request
Security Level: Public(Everyone can see)
Components: ws-security
Reporter: Jason T. Greene
Assigned To: Alessio Soldano
Fix For: jbossws-native-3.0.2
Currently X.509 tokens are validated against a truststore that is local to the
ws-security deployment. We should offer support for delegating to JAAS/JBossSX so that JEE
declarative security can reference known certificates. There is one problem with adding
support for this, which is that a WS-Security message may contain many X.509 tokens
(perhaps one for signature, and one for encryption), so we would have to somehow decide to
pick one.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira