ec1fb49f073c9a3c0be2bfeb521d758bcf3c8c00,rt/ws/security/src/main/java/org/apache/cxf/ws/security/wss4j/PolicyBasedWSS4JInInterceptor.java,PolicyBasedWSS4JInInterceptor,checkTokenCoverage,#AssertionInfoMap#SoapMessage#Element#List#List#boolean#,513

Before Change


        WSSecurityUtil.fetchAllActionResults(results, WSConstants.ST_UNSIGNED, samlResults);
        
        X509TokenPolicyValidator x509Validator = new X509TokenPolicyValidator(msg, results);
        x509Validator.validatePolicy(aim);
        
        if (utWithCallbacks) {
            UsernameTokenPolicyValidator utValidator = 
                new UsernameTokenPolicyValidator(msg, results);
            utValidator.validatePolicy(aim);
        } else {
            Collection<AssertionInfo> ais = aim.get(SP12Constants.USERNAME_TOKEN);
            if (ais != null) {
                for (AssertionInfo ai : ais) {
                    ai.setAsserted(true);
                }
            }
        }
        
        SamlTokenPolicyValidator samlValidator = 
            new SamlTokenPolicyValidator(soapBody, signedResults, msg, results);
        samlValidator.validatePolicy(aim);
        
        SecurityContextTokenPolicyValidator sctValidator = 
            new SecurityContextTokenPolicyValidator(msg, results);
        sctValidator.validatePolicy(aim);
        
        WSS11PolicyValidator wss11Validator = new WSS11PolicyValidator(msg, results);
        wss11Validator.validatePolicy(aim);

After Change


        WSSecurityUtil.fetchAllActionResults(results, WSConstants.ST_SIGNED, samlResults);
        WSSecurityUtil.fetchAllActionResults(results, WSConstants.ST_UNSIGNED, samlResults);
        
        boolean check = true;
        X509TokenPolicyValidator x509Validator = new X509TokenPolicyValidator(msg, results);
        check &= x509Validator.validatePolicy(aim);
        
        if (utWithCallbacks) {
            UsernameTokenPolicyValidator utValidator = 
                new UsernameTokenPolicyValidator(msg, results);
            check &= utValidator.validatePolicy(aim);
        } else {
            Collection<AssertionInfo> ais = aim.get(SP12Constants.USERNAME_TOKEN);
            if (ais != null) {
                for (AssertionInfo ai : ais) {
                    ai.setAsserted(true);
                }
            }
        }
        
        SamlTokenPolicyValidator samlValidator = 
            new SamlTokenPolicyValidator(soapBody, signedResults, msg, results);
        check &= samlValidator.validatePolicy(aim);
        
        SecurityContextTokenPolicyValidator sctValidator = 
            new SecurityContextTokenPolicyValidator(msg, results);
        check &= sctValidator.validatePolicy(aim);
        
        WSS11PolicyValidator wss11Validator = new WSS11PolicyValidator(msg, results);
        check &= wss11Validator.validatePolicy(aim);
        
        return check;
    }
    
    /**