[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: New Issue: Wrong ProtectionToken Policy in chapter 1.1
PLEASE DO NOT REPLY TO THIS EMAIL OR START A DISCUSSISON THREAD UNTIL THE ISSUE IS ASSIGNED A NUMBER.
The issues coordinators will notify the list when that has occurred.
Protocol: ws-securitypolicy
http://www.oasis-open.org/apps/org/workgroup/ws-sx/download.php/21186/ws-securitypolicy-1.2-spec-ed-01-r11.doc
Artifact: spec
Type: editorial
Title: Wrong ProtectionToken Policy in chapter 1.1
Description:
The example security policy in chapter 1.1 (Example) uses a Kerberos V5 APREQ token for the ProtectionToken as follows:
<sp:ProtectionToken>
<wsp:Policy>
<sp:KerberosV5APREQToken sp:IncludeToken=".../IncludeToken/Once" />
</wsp:Policy>
</sp:ProtectionToken>
According to 5.3.4, KerberosToken Assertion, the Assertion for a Kerberos V5 APREQ token should look like:
<sp:ProtectionToken>
<wsp:Policy>
<sp:Kerberos sp:IncludeToken=".../IncludeToken/Once">
<sp:WssKerberosV5ApReqToken11/>
</sp:Kerberos>
</wsp:Policy>
</sp:ProtectionToken>
Related issues:
Proposed Resolution:
Change the example in chapter 1.1 according to the above description.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]