Limitations

6.4.8.1 Limitations

Supported Nesting Assertions
- <sp:UsernameToken>
- <sp:X509Token>
Not-non Supported Nesting Assertions
- <sp:SignedParts>
- <sp:SignedElements>
- <sp:EncryptedParts>
- <sp:EncryptedElements>
All supported token assertions must be defined with Token inclusion type “AlwaysToRecipient”

The following example shows a SALT supported SupportingToken assertion. This assertion indicates the Username token is always included in SOAP request messages:

Example 6-5 Supported SupportingToken Assertion

 <sp:SupportingTokens>
    <wsp:Policy>
      <sp:UsernameToken           sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200512/IncludeToken/AlwaysToRecipient">
        <wsp:Policy>
          <sp:WssUsernameToken10/>
        </wsp:Policy>
      </sp:UsernameToken>
    </wsp:Policy>
  </sp:SupportingTokens>

Parent topic: <sp:SupportingToken>