search

picketlink2 / federation

PicketLink v2.1.x Federation. PicketLink v2.5.x onwards is hosted at https://github.com/picketlink
http://www.picketlink.org
14 stars 29 forks source link

WSTrust.wsdl invalid action #162

Open matejsp opened 11 years ago

matejsp commented 11 years ago

According to spec if WS-Trust is returnig collection of tokens (seems to be default in picketlink).

<wsdl:portType name="SecureTokenService">
   <wsdl:operation name="IssueToken">
  <wsdl:input wsap10:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" message="tns:RequestSecurityToken"/>
  <wsdl:output wsap10:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/Issue" message="tns:RequestSecurityTokenResponse"/>
</wsdl:operation>
</wsdl:portType>

But should be:

 <wsdl:output wsap10:Action="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal" message="tns:RequestSecurityTokenResponse"/>

SOAP Action should be collection (RSTRC), because Issue call is returning 

  <wst:RequestSecurityTokenResponseCollection xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
     <wst:RequestSecurityTokenResponse>
        <wst:TokenType>http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0</wst:TokenType>
        <wst:Lifetime>
anilsaldhana commented 11 years ago

Please free to send pull requests for code changes. We deeply appreciate any open source contribution.