Uploaded image for project: 'JBoss ESB'
  1. JBoss ESB
  2. JBESB-3946

SOA-P 5.3.1 needs to support SOAP 1.2 Authentication

    XMLWordPrintable

    Details

      Description

      From case :

      We want to use SOAP 1.2 with JBoss ESB, but some of the classes are not compatible implemented.
      In "SoapExtractionUtil" hard coded QNames are used!

      Code snippet:
      public static boolean isStartOfHeader(final XMLEvent event)

      { return event.isStartElement() && ((StartElement)event).getName().equals(SOAP_HEADER_QNAME); }

      When this is used by the "UsernameTokenExtractor", in the method "extractSecurityInfo" and the security is no longer useable when using SOAP 1.2!!!

      Code snippet:
      public AuthenticationRequest extractSecurityInfo(final String soap)
      throws ExtractionException {
      if (soap == null || !soap.startsWith("<"))
      return null;

      XMLEventReader xmlReader = null;
      User user = null;
      Set<Object> credentials = new HashSet<Object>();
      try {
      xmlReader = XML_INPUT_FACTORY
      .createXMLEventReader(new StringReader(soap));

      while (xmlReader.hasNext()) {
      XMLEvent xmlEvent = xmlReader.nextEvent();
      if (isStartOfHeader(xmlEvent)) {

      We need to support "SOAP 1.2" to communicate with customers.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                tcunning Thomas Cunningham
                Reporter:
                tcunning Thomas Cunningham
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: