Open matejsp opened 11 years ago
According to spec if WS-Trust is returnig collection of tokens (seems to be default in picketlink).
<wsdl:portType name="SecureTokenService"> <wsdl:operation name="IssueToken"> <wsdl:input wsap10:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" message="tns:RequestSecurityToken"/> <wsdl:output wsap10:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/Issue" message="tns:RequestSecurityTokenResponse"/> </wsdl:operation> </wsdl:portType>
But should be:
<wsdl:output wsap10:Action="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal" message="tns:RequestSecurityTokenResponse"/>
SOAP Action should be collection (RSTRC), because Issue call is returning
<wst:RequestSecurityTokenResponseCollection xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512"> <wst:RequestSecurityTokenResponse> <wst:TokenType>http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0</wst:TokenType> <wst:Lifetime>
Please free to send pull requests for code changes. We deeply appreciate any open source contribution.
According to spec if WS-Trust is returnig collection of tokens (seems to be default in picketlink).
But should be:
SOAP Action should be collection (RSTRC), because Issue call is returning