[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [wss] Recently discover WSS security threat
> Then you're still just signing the header and not the fact that the > header is *directly* inside the soap:Header element. I don't see it. /soap:envelope/soap:header/*[wsu:id='abc'] As a simple XPath transform will find only nodes that are direct children of the header and who have the wsu:id attribute with the right value. In other words, you can do it with a simple XPath transform, not the more complicated XPath2 transform. Right? /r$ -- Rich Salz Chief Security Architect DataPower Technology http://www.datapower.com XS40 XML Security Gateway http://www.datapower.com/products/xs40.html
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]