Bugzilla – Bug 5756
allow developer to bypass secure msg consistency check
Last modified: 2008-01-22 15:33:59
You need to
before you can comment on or make changes to this bug.
(see patch URL)
Don't require secure envelope on response
- since this is an https connection, the deployment does not see the need to
encode the reply in a secure envelope. The server trusts the client via secure
message (allowing for anonymous clients in the TLS connection) but assumes
client will trust response via its https configuration.
- boils down to bypassing the consistency check in WSSecurityClientHandler
for the call
- Introduces Constants.GSI_SEC_MSG_SECREPLY_UNECESSARY --> Boolean.TRUE
Patch committed to branch and trunk. Thanks Tim.