Security tokens not keys

WSO2 SOA Enablement Server cannot directly use keys. Keys must be represented by security tokens. For more information, please see Key Info and Security Token Reference.

Use only local references

Pointing to references outside of the message is not permitted.

Attachments

Attachments cannot be included in WS-Security processing.

No key wrap or key agreement algorithms

Key wrap and key agreement algorithms are not supported.

Base64 encoding

Only Base64 encoding is supported. HexBinary is not supported.