WS 1.1 Security
SOAPUI does not seem to support WS 1.1 security completely.
In WS 1.1 security the initiator (client) generates a symmetric key and encrypts it with the server public key.
The symmetric key is then used for both Encrypting and Signing the message.
SOAPUI does not seem to support the Signing using the generated symmetric key. However the encryption support is available via the Symmetric Encoding Algorithm.
A new option should be added which allows the Symmetric / SecretKey to be referenced from the generated symmetric key instead of a hardcoded value from a keystore.
The Encryption options support some kind of Embedded KeyInfo but I can't see any documentation that explains what this does.
In WS 1.1 security the initiator (client) generates a symmetric key and encrypts it with the server public key.
The symmetric key is then used for both Encrypting and Signing the message.
SOAPUI does not seem to support the Signing using the generated symmetric key. However the encryption support is available via the Symmetric Encoding Algorithm.
A new option should be added which allows the Symmetric / SecretKey to be referenced from the generated symmetric key instead of a hardcoded value from a keystore.
The Encryption options support some kind of Embedded KeyInfo but I can't see any documentation that explains what this does.
