ws-security-stax/src/main/java/org/apache/wss4j/stax/setup/WSSec.java [355:378]: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - if (securityProperties.getEncryptionUseThisCertificate() == null && securityProperties.getEncryptionKeyStore() == null && securityProperties.getEncryptionCryptoProperties() == null && !securityProperties.isUseReqSigCertForEncryption() && securityProperties.isEncryptSymmetricEncryptionKey() && securityProperties.getEncryptionCrypto() == null) { throw new WSSConfigurationException(WSSConfigurationException.ErrorCode.FAILURE, "encryptionKeyStoreNotSet"); } if (securityProperties.getEncryptionUser() == null && securityProperties.getEncryptionUseThisCertificate() == null && !securityProperties.isUseReqSigCertForEncryption() && securityProperties.isEncryptSymmetricEncryptionKey()) { throw new WSSConfigurationException(WSSConfigurationException.ErrorCode.FAILURE, "noEncryptionUser"); } if (securityProperties.getEncryptionSymAlgorithm() == null) { securityProperties.setEncryptionSymAlgorithm(WSSConstants.NS_XENC_AES256); } if (securityProperties.getEncryptionKeyTransportAlgorithm() == null) { //@see http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/Overview.html#rsa-1_5 : //"RSA-OAEP is RECOMMENDED for the transport of AES keys" //@see http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/Overview.html#rsa-oaep-mgf1p securityProperties.setEncryptionKeyTransportAlgorithm(WSSConstants.NS_XENC_RSAOAEPMGF1P); } if (securityProperties.getEncryptionKeyIdentifier() == null) { - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - ws-security-stax/src/main/java/org/apache/wss4j/stax/setup/WSSec.java [389:412]: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - if (securityProperties.getEncryptionUseThisCertificate() == null && securityProperties.getEncryptionKeyStore() == null && securityProperties.getEncryptionCryptoProperties() == null && !securityProperties.isUseReqSigCertForEncryption() && securityProperties.isEncryptSymmetricEncryptionKey() && securityProperties.getEncryptionCrypto() == null) { throw new WSSConfigurationException(WSSConfigurationException.ErrorCode.FAILURE, "encryptionKeyStoreNotSet"); } if (securityProperties.getEncryptionUser() == null && securityProperties.getEncryptionUseThisCertificate() == null && !securityProperties.isUseReqSigCertForEncryption() && securityProperties.isEncryptSymmetricEncryptionKey()) { throw new WSSConfigurationException(WSSConfigurationException.ErrorCode.FAILURE, "noEncryptionUser"); } if (securityProperties.getEncryptionSymAlgorithm() == null) { securityProperties.setEncryptionSymAlgorithm(WSSConstants.NS_XENC_AES256); } if (securityProperties.getEncryptionKeyTransportAlgorithm() == null) { //@see http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/Overview.html#rsa-1_5 : //"RSA-OAEP is RECOMMENDED for the transport of AES keys" //@see http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/Overview.html#rsa-oaep-mgf1p securityProperties.setEncryptionKeyTransportAlgorithm(WSSConstants.NS_XENC_RSAOAEPMGF1P); } if (securityProperties.getEncryptionKeyIdentifier() == null) { - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -