A significant problem with putting wsa:To as the request-URI is that end-to-end content protection and integrity (signing and encryption) is lost. Or are you saying it should be *copied* and not moved? That's what SMTP typically does, although RCPT-TO isn't the same as the To header (cf mailing lists). That separation isn't something HTTP seems to support, although perhaps it should. Does the issue get resolved if we add a wsa:Request-URI to the EPR /r$ -- Rich Salz Chief Security Architect DataPower Technology http://www.datapower.com XS40 XML Security Gateway http://www.datapower.com/products/xs40.html XML Security Overview http://www.datapower.com/xmldev/xmlsecurity.htmlReceived on Sunday, 6 February 2005 15:21:48 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 2 June 2009 18:35:03 GMT