STR-Transform SAML 2.0 Sender Vouches for IssuedToken in WS-Policy doesn't work

Solution Verified - Updated -


A CXF Client using WS-Policy is unable to create the necessary signatures for SAML 2.0 sender vouches from a security token service (specified as IssuedToken in WS-Policy). Namely it is missing the STR-Transform signature required for sender vouches.


  • Red Hat JBoss Enterprise Application Platform (EAP) 6.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In