Additional information from IBM datapower support for support that SOAPUI uses for the token type
(IBM Writes) Thank you for the additional information. I am still working on the recreate. However, I would like to confirm that DataPower does support X509PKIPathv1 token. However if we can reproduce that, I can forward it to engineering team to evaluate for possibly bug. I will contact you again within 2 days with some update or any additional question.
ok, I've dug into this a little; it seems that you get the correct V3 ValueType if you t select the "Use Single Certificate" option only; if you don't select it the wss4j uses the V1 ValueType since there may be other certificates in the certificate chain that are of this type. I'm not sure if this is correct behavior and I could fix this by checking all certificates, but on the other hand which valuetype should it be if there are both V1 and V3 certificates in the chain? The type of the "last" certificate?
Before I dig in more and try to work around this I wanted to check if you could use the "Use Single Certificate" option as I have to get the V3 ValueType!?
I'll send you screen-shots of my settings via mail!