ec1fb49f073c9a3c0be2bfeb521d758bcf3c8c00,rt/ws/security/src/main/java/org/apache/cxf/ws/security/wss4j/PolicyBasedWSS4JInInterceptor.java,PolicyBasedWSS4JInInterceptor,checkTokenCoverage,#AssertionInfoMap#SoapMessage#Element#List#List#boolean#,513
Before Change
WSSecurityUtil.fetchAllActionResults(results, WSConstants.ST_UNSIGNED, samlResults);
X509TokenPolicyValidator x509Validator = new X509TokenPolicyValidator(msg, results);
x509Validator.validatePolicy(aim);
if (utWithCallbacks) {
UsernameTokenPolicyValidator utValidator =
new UsernameTokenPolicyValidator(msg, results);
utValidator.validatePolicy(aim);
} else {
Collection<AssertionInfo> ais = aim.get(SP12Constants.USERNAME_TOKEN);
if (ais != null) {
for (AssertionInfo ai : ais) {
ai.setAsserted(true);
}
}
}
SamlTokenPolicyValidator samlValidator =
new SamlTokenPolicyValidator(soapBody, signedResults, msg, results);
samlValidator.validatePolicy(aim);
SecurityContextTokenPolicyValidator sctValidator =
new SecurityContextTokenPolicyValidator(msg, results);
sctValidator.validatePolicy(aim);
WSS11PolicyValidator wss11Validator = new WSS11PolicyValidator(msg, results);
wss11Validator.validatePolicy(aim);
After Change
WSSecurityUtil.fetchAllActionResults(results, WSConstants.ST_SIGNED, samlResults);
WSSecurityUtil.fetchAllActionResults(results, WSConstants.ST_UNSIGNED, samlResults);
boolean check = true;
X509TokenPolicyValidator x509Validator = new X509TokenPolicyValidator(msg, results);
check &= x509Validator.validatePolicy(aim);
if (utWithCallbacks) {
UsernameTokenPolicyValidator utValidator =
new UsernameTokenPolicyValidator(msg, results);
check &= utValidator.validatePolicy(aim);
} else {
Collection<AssertionInfo> ais = aim.get(SP12Constants.USERNAME_TOKEN);
if (ais != null) {
for (AssertionInfo ai : ais) {
ai.setAsserted(true);
}
}
}
SamlTokenPolicyValidator samlValidator =
new SamlTokenPolicyValidator(soapBody, signedResults, msg, results);
check &= samlValidator.validatePolicy(aim);
SecurityContextTokenPolicyValidator sctValidator =
new SecurityContextTokenPolicyValidator(msg, results);
check &= sctValidator.validatePolicy(aim);
WSS11PolicyValidator wss11Validator = new WSS11PolicyValidator(msg, results);
check &= wss11Validator.validatePolicy(aim);
return check;
}
/**