[jira] [Updated] (CXF-4158) Support the renewal binding in the STS

[ https://issues.apache.org/jira/browse/CXF-4158?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4158: - Description: This task is to support the renewal binding in the STS for SAML Tokens. (was:

[jira] [Updated] (CXF-4062) Enabling custom claim parser

[ https://issues.apache.org/jira/browse/CXF-4062?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4062: - Component/s: Services > Enabling custom claim parser > > >

[jira] [Updated] (CXF-4173) Support for ClaimValue element of federation claims dialect added

[ https://issues.apache.org/jira/browse/CXF-4173?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4173: - Fix Version/s: 2.5.3 > Support for ClaimValue element of federation claims dialect adde

[jira] [Updated] (CXF-4062) Enabling custom claim parser

[ https://issues.apache.org/jira/browse/CXF-4062?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4062: - Fix Version/s: 2.5.3 > Enabling custom claim parser > > >

[jira] [Updated] (CXF-4157) Support batch processing via RequestSecurityTokenCollection.

[ https://issues.apache.org/jira/browse/CXF-4157?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4157: - Description: Support batch processing via RequestSecurityTokenCollection. (was: Support

[jira] [Updated] (CXF-4158) Support the renewal binding in the STS

[ https://issues.apache.org/jira/browse/CXF-4158?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4158: - Fix Version/s: 2.6 > Support the renewal binding in the STS > -

[jira] [Updated] (CXF-1636) Have WSS4J in/out interceptors require nonces and timestamps when using UsernameTokens?

[ https://issues.apache.org/jira/browse/CXF-1636?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-1636: - Fix Version/s: 2.6 2.5.3 2.4.7 > Have WSS4J in/ou

[jira] [Updated] (CXF-4158) Support the renewal binding in the STS

[ https://issues.apache.org/jira/browse/CXF-4158?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4158: - Component/s: Services Description: This task is to support the renewal binding in the ST

[jira] [Updated] (CXF-4162) Support the Key Exchange Token Binding.

[ https://issues.apache.org/jira/browse/CXF-4162?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4162: - Component/s: (was: Service Model) Services Description: Support the

[jira] [Updated] (CXF-4156) Support SymmetricKeys for Entropy/BinarySecret Elements

[ https://issues.apache.org/jira/browse/CXF-4156?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4156: - Fix Version/s: 2.6 > Support SymmetricKeys for Entropy/BinarySecret Elements >

[jira] [Updated] (CXF-4156) Support SymmetricKeys for Entropy/BinarySecret Elements

[ https://issues.apache.org/jira/browse/CXF-4156?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4156: - Description: We currently only support Nonces for Entropy/BinarySecret Elements. We should

[jira] [Updated] (CXF-1636) Have WSS4J in/out interceptors require nonces and timestamps when using UsernameTokens?

[ https://issues.apache.org/jira/browse/CXF-1636?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-1636: - Attachment: cxf-1636.patch > Have WSS4J in/out interceptors require nonces and timestam

[jira] [Updated] (CXF-4168) Support processing a KeyInfo/KeyValue child of UseKey in a RequestSecurityToken

[ https://issues.apache.org/jira/browse/CXF-4168?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4168: - Component/s: Services Description: Support processing a KeyInfo/KeyValue child of UseKey

[jira] [Updated] (CXF-4161) Support processing a UseKey Element that uses a SecurityTokenReference to another token

[ https://issues.apache.org/jira/browse/CXF-4161?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4161: - Fix Version/s: 2.6 > Support processing a UseKey Element that uses a SecurityTokenRefer

[jira] [Updated] (CXF-4160) Support signing a SAML token using the requested signature and canonicalization algorithm

[ https://issues.apache.org/jira/browse/CXF-4160?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4160: - Description: Support signing a SAML token using the requested signature and canonicalizat

[jira] [Updated] (CXF-4161) Support processing a UseKey Element that uses a SecurityTokenReference to another token

[ https://issues.apache.org/jira/browse/CXF-4161?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4161: - Component/s: Services Description: Support processing a UseKey Element that uses a Secu

[jira] [Updated] (CXF-4146) Add the ability to use the same Encryption/Signature algorithms as was received

[ https://issues.apache.org/jira/browse/CXF-4146?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4146: - Component/s: JAX-RS Security Description: This task is to add a boolean switch to allow

[jira] [Updated] (CXF-4099) SignedParts, EncryptedParts policy assertions are silently ignored on the client side if specified alone

[ https://issues.apache.org/jira/browse/CXF-4099?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4099: - Fix Version/s: 2.6 2.5.3 2.4.7 > SignedParts, Enc

[jira] [Updated] (CXF-4092) Confusing error message "No initiator token id" in AssymetricBindingHandler

[ https://issues.apache.org/jira/browse/CXF-4092?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4092: - Fix Version/s: 2.5.3 2.4.7 > Confusing error message "No initiator t

[jira] [Updated] (CXF-4052) Crypto cache issues and the PolicyBasedWSS4JInInterceptor used as a singleton

[ https://issues.apache.org/jira/browse/CXF-4052?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4052: - Affects Version/s: 2.5.2 Fix Version/s: 2.5.3 2.4.7 > Cr

[jira] [Updated] (CXF-4052) Crypto cache issues and the PolicyBasedWSS4JInInterceptor used as a singleton

[ https://issues.apache.org/jira/browse/CXF-4052?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4052: - Attachment: cxf-4052-2.patch Here's a better attempt at solving this problem. The PolicyB

[jira] [Updated] (CXF-3809) Tests failing with: The signature or decryption was invalid

[ https://issues.apache.org/jira/browse/CXF-3809?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3809: - Fix Version/s: 2.5.3 2.4.7 > Tests failing with: The signature or de

[jira] [Updated] (CXF-4052) Crypto cache issues and the PolicyBasedWSS4JInInterceptor used as a singleton

[ https://issues.apache.org/jira/browse/CXF-4052?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4052: - Attachment: cxf-4052.patch Hi Alessio, See attached for a patch for this issue against tru

[jira] [Updated] (CXF-4049) Check external CryptoProvider from message context properties in Wss4jInInterceptor

[ https://issues.apache.org/jira/browse/CXF-4049?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4049: - Fix Version/s: 2.5.3 2.4.7 > Check external CryptoProvider from mess

[jira] [Updated] (CXF-4049) Check external CryptoProvider from message context properties in Wss4jInInterceptor

[ https://issues.apache.org/jira/browse/CXF-4049?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4049: - CXF Fields: Blocked on External > Check external CryptoProvider from message context pr

[jira] [Updated] (CXF-2864) Support UsernameToken derived keys

[ https://issues.apache.org/jira/browse/CXF-2864?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-2864: - Fix Version/s: (was: 2.4.6) (was: 2.5.2) 2.5.3

[jira] [Updated] (CXF-3635) WS-Trust SPNego (WCF message level spnego)

[ https://issues.apache.org/jira/browse/CXF-3635?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3635: - Fix Version/s: 2.5.3 2.4.7 > WS-Trust SPNego (WCF message level spne

[jira] [Updated] (CXF-4034) Allow SecurityConstants.SIGNATURE_CRYPTO and ENCRYPT_CRYPTO to be used on processing side

[ https://issues.apache.org/jira/browse/CXF-4034?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4034: - Description: This task is to allow SecurityConstants.SIGNATURE_CRYPTO and ENCRYPT_CRYPTO

[jira] [Updated] (CXF-4034) Allow SecurityConstants.SIGNATURE_CRYPTO and ENCRYPT_CRYPTO to be used on processing side

[ https://issues.apache.org/jira/browse/CXF-4034?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4034: - Attachment: sig-crypto.patch A patch for this issue. It depends on a fix in WSS4J 1.6.5.

[jira] [Updated] (CXF-2864) Support UsernameToken derived keys

[ https://issues.apache.org/jira/browse/CXF-2864?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-2864: - Attachment: endorse.patch.2 Part II of this task is attached as a patch, due to a dependen

[jira] [Updated] (CXF-2864) Support UsernameToken derived keys

[ https://issues.apache.org/jira/browse/CXF-2864?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-2864: - CXF Fields: Blocked on External > Support UsernameToken derived keys >

[jira] [Updated] (CXF-2864) Support UsernameToken derived keys

[ https://issues.apache.org/jira/browse/CXF-2864?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-2864: - Fix Version/s: 2.4.6 > Support UsernameToken derived keys > ---

[jira] [Updated] (CXF-2864) Support UsernameToken derived keys

[ https://issues.apache.org/jira/browse/CXF-2864?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-2864: - Fix Version/s: 2.5.2 > Support UsernameToken derived keys > ---

[jira] [Updated] (CXF-4012) The AlgorithmSuite class does not use the WS-SP standard maximum symmetric key size

[ https://issues.apache.org/jira/browse/CXF-4012?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4012: - Description: The AlgorithmSuite class does not use the WS-SP standard maximum symmetr

[jira] [Updated] (CXF-4011) The STS SAML DefaultSubjectProvider does not set the encryption algorithm when building an EncryptedKey

[ https://issues.apache.org/jira/browse/CXF-4011?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4011: - Description: The STS SAML DefaultSubjectProvider does not set the encryption algorith

[jira] [Updated] (CXF-4010) Add ability to specific EncryptionProperties per STS instance

[ https://issues.apache.org/jira/browse/CXF-4010?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-4010: - Component/s: Services Description: This task is to add the ability to specify an Encryp

[jira] [Updated] (CXF-3635) WS-Trust SPNego (WCF message level spnego)

[ https://issues.apache.org/jira/browse/CXF-3635?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3635: - Attachment: cxf-3635-pluggable.patch > WS-Trust SPNego (WCF message level spnego) > ---

[jira] [Updated] (CXF-3635) WS-Trust SPNego (WCF message level spnego)

[ https://issues.apache.org/jira/browse/CXF-3635?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3635: - CXF Fields: Blocked on External > WS-Trust SPNego (WCF message level spnego) >

[jira] [Updated] (CXF-3960) Patch for InitiatorSignatureToken Support in WS-Policy definition

[ https://issues.apache.org/jira/browse/CXF-3960?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3960: - Fix Version/s: 2.5.1 > Patch for InitiatorSignatureToken Support in WS-Policy definitio

[jira] [Updated] (CXF-3948) CXF 2.3.x does not configure the Future TTL value for Timestamp processing

[ https://issues.apache.org/jira/browse/CXF-3948?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3948: - Description: CXF 2.3.x does not configure the Future TTL value for Timestamp processing, me

[jira] [Updated] (CXF-3929) Present realm ignored by TokenValidateOperation for TokenValidator

[ https://issues.apache.org/jira/browse/CXF-3929?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3929: - Fix Version/s: 2.5.1 > Present realm ignored by TokenValidateOperation for TokenValidat

[jira] [Updated] (CXF-3928) Add token validation for OnBehalfOf element in TokenIssueOperation

[ https://issues.apache.org/jira/browse/CXF-3928?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3928: - Fix Version/s: 2.5.1 > Add token validation for OnBehalfOf element in TokenIssueOperati

[jira] [Updated] (CXF-3931) STS SAMLTokenValidator doesn't validate condition

[ https://issues.apache.org/jira/browse/CXF-3931?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3931: - Fix Version/s: 2.5.1 > STS SAMLTokenValidator doesn't validate condition >

[jira] [Updated] (CXF-3924) Support to configure keystore per SAML realm

[ https://issues.apache.org/jira/browse/CXF-3924?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3924: - Fix Version/s: 2.5.1 > Support to configure keystore per SAML realm > -

[jira] [Updated] (CXF-3922) Support for KerberosToken in RST if LdapClaimsHandler used

[ https://issues.apache.org/jira/browse/CXF-3922?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3922: - Fix Version/s: 2.5.1 > Support for KerberosToken in RST if LdapClaimsHandler used > ---

[jira] [Updated] (CXF-3923) Support for OnBehalfOf in SAMLTokenProvider

[ https://issues.apache.org/jira/browse/CXF-3923?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3923: - Fix Version/s: 2.5.1 > Support for OnBehalfOf in SAMLTokenProvider > --

[jira] [Updated] (CXF-3225) Add support for saml tokens in sp:InitiatorToken

[ https://issues.apache.org/jira/browse/CXF-3225?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3225: - Fix Version/s: 2.5.1 2.4.4 > Add support for saml tokens in sp:Initi

[jira] [Updated] (CXF-3857) Support for subclassing of STSClient and adding Claims to RST

[ https://issues.apache.org/jira/browse/CXF-3857?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3857: - Affects Version/s: (was: 2.5) Fix Version/s: 2.5 > Support for subclassing

[jira] [Updated] (CXF-3850) SAML and UsernameToken validation should validate the realm of the incoming token against cached tokens

[ https://issues.apache.org/jira/browse/CXF-3850?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3850: - Affects Version/s: (was: 2.4.2) Fix Version/s: (was: 2.4.3)

[jira] [Updated] (CXF-3827) Cancelling a SCT with STS is missing verification of proof of possession key

[ https://issues.apache.org/jira/browse/CXF-3827?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3827: - Fix Version/s: (was: 2.4.3) > Cancelling a SCT with STS is missing verification of

[jira] [Updated] (CXF-3826) Implementation of caching in STS

[ https://issues.apache.org/jira/browse/CXF-3826?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated CXF-3826: - Fix Version/s: (was: 2.4.3) > Implementation of caching in STS > --