AnsweredAssumed Answered

Using * Require WS-Security Password Digest Credentials Assertion & Validation of incoming Values (Nonce & Timestamp & passwordDigest)

Question asked by Fatih.Boy.82300647 on May 7, 2017
Latest reply on May 7, 2017 by Fatih.Boy.82300647

* Require WS-Security Password Digest Credentials Assertion

Hi All,

I need to validate the timestamp & nonce with the incoming passwordDigest value, 

I have found the below formula  Password_Digest = Base64 ( SHA-1 ( nonce + created + password ) )

And I have found a few lines of Java Code to validate these values if they match,

So shortly if I Want to validate the incoming Nonce & Timestamp & passwordDigest values all together, should I use a customAssertion or is there any way to do it so ?

I could not find a way to do it,

Outcomes