How to perform security tests on SOAP request that contains XML in a string attribute.
I have a web service that submits a soap request that contains an XML file in the request in a string element. The actual request (i.e. data that would change in different requests) are in the embedded document. And yes, the xml document is enclosed in CDATA. Is there a way to have the security functionality perform the testing on the elements in the embedded XML document? Thanks.Configure WSS11 Security Policy
Has anyone had any luck in configuring WSS11 security policy on Soap UI? I am using Ready API 1.4.1. I have attempted to find multiple forum articles regarding this, but no-one seems to have had an answer e.g. - https://community.smartbear.com/t5/SoapUI-NG/Support-for-signature-using-secretkey/td-p/33846 - http://community.smartbear.com/t5/SoapUI-NG/SecretKey-not-supported-due-to-JCEKS-keystores-not-supported/m-p/110835#M25770 It looks like a feature request was raised for this. If anyone has managed to configure this, please get in touch. Thanks.
SecurePRO (ReadyAPI 1.6.0): How to modify the default assertion "Valie HTTP Status Codes"
We run SecurePRO Security-Tests. Therefore we use all the default scans provided. One of them is "HTTP Method Fuzzing" Request: PATCH http://localhost:14080/rest-service/rest/contact/contacts?languageCode=xx Response: HTTP/1.1 500 Internal Server Error Now, SecurePro isalerting (Warning): Valid HTTP Status Codes: Response status code 500 is not in the list of status codes But I can't find any place to modify the list of valid status codes. Please note, I did not add this assertion manually It's a default assertion as it is alsoa default security scan. Any ideas? Thanks Regards, Reto
