Fix signature verification #48

fauresebast · 2025-07-31T09:15:50Z

AS4 message

have a couple of "//wse:Security/wse:BinarySecurityToken" so we need to extract the correct one during signature validation
may have ds:Reference for attachments, not following the other Reference validation and must be checked outside

NathanBerthier

Nice work 💪

lib/akami/wsse/verify_signature.rb

…ple binary tokens situations

thromera · 2025-08-05T10:04:15Z

Nice

Fix signature verification

a6020eb

fauresebast marked this pull request as ready for review July 31, 2025 09:21

NathanBerthier approved these changes Jul 31, 2025

View reviewed changes

lib/akami/wsse/verify_signature.rb Outdated Show resolved Hide resolved

NathanBerthier approved these changes Jul 31, 2025

View reviewed changes

Add usage of defined constant for WSSE, update to handle one or multi…

0d0a03e

…ple binary tokens situations

fauresebast force-pushed the sf/fix-signature-verification branch from c6577e7 to be41233 Compare August 7, 2025 10:29

Add signature verification of decrypted attachments

07e8524

fauresebast force-pushed the sf/fix-signature-verification branch from be41233 to 07e8524 Compare August 7, 2025 14:17

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fix signature verification #48

Fix signature verification #48

Uh oh!

fauresebast commented Jul 31, 2025

Uh oh!

NathanBerthier left a comment

Uh oh!

Uh oh!

thromera commented Aug 5, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Fix signature verification #48

Are you sure you want to change the base?

Fix signature verification #48

Uh oh!

Conversation

fauresebast commented Jul 31, 2025

Uh oh!

NathanBerthier left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

thromera commented Aug 5, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants