Axis2/Rampart - Client-side error because response doesn't contain signature
posted 1 year ago
I'm writing a client using Axis2/Rampart. The service is provided by a third-party and I can't control what it does. The service requires that the request by digitally signed. My code generates a valid request (from the service's perspective) and the service returns a response. The issue is that the response is not signed and Rampart doesn't like that.
Here is and example of the header of the request (redacted slightly):
Here is an example of the header of the response. The response does contain a BinarySecurityToken tag, but no Signature tag, and I believe this is what is causing the problem.
This is the errors I get from rampart as it tries to process the response. Again it is redacted slightly.
I'm trying to figure out if there is any way that I can make Axis2/Rampart work with this type of request/response. Thanks for your help!