-
|
Is there a way to enforce a (valid) signature and encryption in the receiving AS4 message? Right now, it seems that it's possible to send a completely unencrypted, unsigned message to the Is there an interface/propery to enforce signatures and encryption? E.g. here, if the SOAP does not contain a
|
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 2 replies
-
|
I created #162 for that. Makes sense to enforce that. |
Beta Was this translation helpful? Give feedback.
-
|
As it turns out, the proposed solution to add this to the profile is not sufficient. This would need to be done for every message type separately. Instead the following methods can be used on a case by case basis:
|
Beta Was this translation helpful? Give feedback.
-
|
This is fine, we will check it that way for our use cases "manually" in our application |
Beta Was this translation helpful? Give feedback.
As it turns out, the proposed solution to add this to the profile is not sufficient. This would need to be done for every message type separately. Instead the following methods can be used on a case by case basis:
IAS4MessageState.isSoapSignatureChecked ()returnstrueif the message was signedIAS4MessageState.isSoapDecrypted()returnstrueif the message was decrypted