Re: [jboss-user] [JBoss Web Services] - Jboss ws-security, client configuration
by Tim de Jager
Tim de Jager [http://community.jboss.org/people/tdejager] replied to the discussion
"Jboss ws-security, client configuration"
To view the discussion, visit: http://community.jboss.org/message/543708#543708
--------------------------------------------------------------
It finally works!
I added the logging just as you said and it appeared that the keys in my keystore were configured using a DSA algorithm not RSA which is apparantly required by ws-security.
As soon as I changed my keystore, I could succesfully make a webrequest.
Thanks a lot, for assisting me, it really helped me out a lot!
I found out btw by having a META-INF directory in the source folder with the correct files: the keystores, jboss-wsse-client.xml and standard-jaxws-client-config.xml. It automatically detects the settings.
The weird thing is that everything is actually quite straightforward, but because of the documentation that is scattered throughout the jboss website, sometimes using different XML for the same thing, it can become quite a stretch to get everything working.
I can certainly see your point with the "crying out in the wilderness". The JBoss in Action book does a decent job of structuring the documentation, but even there it uses the batch file: wsrunclient, for running the client code which is not realistic in real situation. And as a lot of problems come up while managing dependencies .
A good addition to the documentation would be a page which explains error messages and their solutions. Some of which in run into all the time, for example the `setProperty must be overriden' error. This would of courese be quite a challange, as you've got all the external factors which will make each situation different. But it would be a good starting point.
Well anyway thanks again for the help!
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/543708#543708]
Start a new discussion in JBoss Web Services at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&cont...]
14 years, 4 months
Re: [jboss-user] [JBoss Web Services] - Jboss ws-security, client configuration
by Sidney Zurch
Sidney Zurch [http://community.jboss.org/people/zurchman] replied to the discussion
"Jboss ws-security, client configuration"
To view the discussion, visit: http://community.jboss.org/message/543702#543702
--------------------------------------------------------------
I'm happy to try to help. Sometimes you can feel like you are "crying out" in the WS-Security "wilderness" here. The developers rely on their test cases and test suites, but I think that there could be more test coverage for WS-Security applications, especially ones that use wsconsume.
To get more detail from your application, try adding some of these to the logging configuration file used by your *client*:
#log4j.logger.org.jboss.ws=TRACE
log4j.logger.org.jboss.ws.extensions.security.WSSecurityDispatcher=DEBUG
#log4j.logger.org.jboss.ws.extensions.security=TRACE
If you configure your *server* logging similarly, my guess is that you are going to see the that the server is throwing a fault because the decryption fails. (And my suspicion is that the real problem is that the client may not be performing the encryption properly).
The other thing you might prepare yourself for is that your client may very well work correctly with a sufficient level of debugging. I have a native JBossWS 3.1.1 client that works - as long as WSSecurityDispatcher logs with a level of DEBUG or TRACE! Go figure. :-/
I had enough trouble trying to get a client working without the additional work of packaging it into a jar, so I can't comment on placing the client security configuration in META-INF.
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/543702#543702]
Start a new discussion in JBoss Web Services at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&cont...]
14 years, 4 months