Bug 991136
| Summary: | SOA-P 5.3.1 needs to support SOAP 1.2 Authentication | |||
|---|---|---|---|---|
| Product: | [JBoss] JBoss Enterprise SOA Platform 5 | Reporter: | tcunning | |
| Component: | JBossESB | Assignee: | tcunning | |
| Status: | CLOSED NOTABUG | QA Contact: | ||
| Severity: | unspecified | Docs Contact: | ||
| Priority: | unspecified | |||
| Version: | 5.3.1 | CC: | rwagner, soa-p-jira | |
| Target Milestone: | GA | |||
| Target Release: | CONTINUING | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| Whiteboard: | ||||
| Fixed In Version: | Doc Type: | Bug Fix | ||
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 991461 (view as bug list) | Environment: | ||
| Last Closed: | 2013-08-02 18:26:03 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | ||||
| Bug Blocks: | 991461, 991463 | |||
Closing this BZ, we can fix 5.3.1 with the next Roll up via BZ991461. Tom Cunningham <tcunning> updated the status of jira JBESB-3946 to Resolved Tom Cunningham <tcunning> updated the status of jira JBESB-3946 to Closed |
Description of problem: From case : We want to use SOAP 1.2 with JBoss ESB, but some of the classes are not compatible implemented. In "SoapExtractionUtil" hard coded QNames are used! Code snippet: public static boolean isStartOfHeader(final XMLEvent event) { return event.isStartElement() && ((StartElement)event).getName().equals(SOAP_HEADER_QNAME); } When this is used by the "UsernameTokenExtractor", in the method "extractSecurityInfo" and the security is no longer useable when using SOAP 1.2!!! Code snippet: public AuthenticationRequest extractSecurityInfo(final String soap) throws ExtractionException { if (soap == null || !soap.startsWith("<")) return null; XMLEventReader xmlReader = null; User user = null; Set<Object> credentials = new HashSet<Object>(); try { xmlReader = XML_INPUT_FACTORY .createXMLEventReader(new StringReader(soap)); while (xmlReader.hasNext()) { XMLEvent xmlEvent = xmlReader.nextEvent(); if (isStartOfHeader(xmlEvent)) { We need to support "SOAP 1.2" to communicate with customers.