[
http://jira.jboss.com/jira/browse/JBWS-1188?page=all ]
Darran Lofthouse updated JBWS-1188:
-----------------------------------
Fix Version/s: jbossws-2.0.1
(was: jbossws-2.0.0)
Relax requirement for wsu:id for UsernameToken
----------------------------------------------
Key: JBWS-1188
URL:
http://jira.jboss.com/jira/browse/JBWS-1188
Project: JBoss Web Services
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: ws-security
Affects Versions: jbossws-1.0.3
Reporter: Darran Lofthouse
Assigned To: Darran Lofthouse
Fix For: jbossws-2.0.1
The JBossWS UsernameToken implementation is mandating that the wsu:id attribute is
present on incomming requests.
Some thirdparty web services stacks being used as clients to JBossWS do not send the ID
so we are rejecting the request. Additionally we do not actually use the id anywhere
anyway.
The requirement for the id should be relaxed.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira