May 2008 - jbossws-users - Jboss List Archives

[JBossWS] - Re: WS-security interoperability

by alessio.soldano＠jboss.com

anonymous wrote : | ERROR [WSSecurityDispatcher] Internal error occured handling inbound message: | | org.jboss.ws.extensions.security.exception.SecurityTokenUnavailableException: Could not resolve toke | | | | n id: SecurityToken-0ea77ee8-31eb-469e-b7b1-67159331a23f | | at org.jboss.ws.extensions.security.KeyResolver.resolveDirectReference(KeyResolver.java:106) | | | | | | at org.jboss.ws.extensions.security.KeyResolver.resolve(KeyResolver.java:84) | | at org.jboss.ws.extensions.security.KeyResolver.resolveCertificate(KeyResolver.java:131) | | | The key resolver is failing while looking for a directly referenced security token. Does the received message actually contain that token? I suggest you to check the incoming message, perhaps post it here. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152217#4152217 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4152217

16 years, 7 months

1
0
0 / 0

[JBossWS] - Can JBoss set Username Token in SOAP header with authenticat

by dbschofield

I have a secured JSP that makes a web service call. Is it possible to configure JBoss to set the Username Token in the SOAP Header using the credentials of the authenticated user? I need to have: <wsse:Username Token> <wsse:Username>BillyBob</wsse:Username> <wsse:Password>supersecret</wsse:Password> </wsse:Username Token> be present in the SOAP Header and avoid any JBoss specific API's that would break portability between WebSphere and JBoss. Thanks View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152171#4152171 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4152171

16 years, 7 months

1
0
0 / 0

[JBossWS] - Re: WS-security interoperability

by stepmarti

On response in wse3policyCache.config I try too using but it doesn't works | <response signatureOptions="IncludeAddressing, IncludeTimestamp, IncludeSoapBody" encryptBody="false" /> | View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152120#4152120 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4152120

16 years, 7 months

1
0
0 / 0

[JBossWS] - WS-security interoperability

by stepmarti

Hello. I have a secure web service on JBoss Server side jboss-wsse-server.xml | <?xml version="1.0" encoding="UTF-8"?> | <jboss-ws-security xmlns="http://www.jboss.com/ws-security/config" | xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | xsi:schemaLocation="http://www.jboss.com/ws-security/config | http://www.jboss.com/ws-security/schema/jboss-ws-security_1_0.xsd"> | <key-store-file>WEB-INF/keystore.jks</key-store-file> | <key-store-password>adminadmin</key-store-password> | <trust-store-file>WEB-INF/cacerts.jks</trust-store-file> | <trust-store-password>adminadmin</trust-store-password> | <config> | <sign type="x509v3" alias="xws-security-server" tokenReference="keyIdentifier"/> | <requires> | <signature/> | </requires> | </config> | </jboss-ws-security> | Web Service code | package step; | | import javax.jws.WebMethod; | import javax.jws.WebParam; | import javax.jws.WebService; | import javax.jws.soap.SOAPBinding; | import org.jboss.annotation.security.SecurityDomain; | import org.jboss.ws.annotation.EndpointConfig; | | @WebService | (name="NewWebService", | targetNamespace = "http://step", | serviceName = "NewWebServiceService") | @SOAPBinding(style = SOAPBinding.Style.RPC) | @EndpointConfig(configName = "Standard WSSecurity Endpoint") | | public class NewWebService { | | /** | * Web service operation | */ | @WebMethod(operationName = "holaMundo") | public String holaMundo(@WebParam(name = "param") | String param) { | String res="RECIBIDO:"+param+" ENTREGADO: HOLA MUNDO "; | return res; | } | | } | Consuming this service with a java client works fine, but with .Net client I am getting the error message: | ERROR [WSSecurityDispatcher] Internal error occured handling inbound message: | org.jboss.ws.extensions.security.exception.SecurityTokenUnavailableException: Could not resolve toke | n id: SecurityToken-0ea77ee8-31eb-469e-b7b1-67159331a23f | at org.jboss.ws.extensions.security.KeyResolver.resolveDirectReference(KeyResolver.java:106) | | at org.jboss.ws.extensions.security.KeyResolver.resolve(KeyResolver.java:84) | at org.jboss.ws.extensions.security.KeyResolver.resolveCertificate(KeyResolver.java:131) | at org.jboss.ws.extensions.security.KeyResolver.resolvePublicKey(KeyResolver.java:141) | at org.jboss.ws.extensions.security.KeyResolver.resolvePublicKey(KeyResolver.java:161) | at org.jboss.ws.extensions.security.element.Signature.<init>(Signature.java:56) | at org.jboss.ws.extensions.security.element.SecurityHeader.<init>(SecurityHeader.java:87) | at org.jboss.ws.extensions.security.SecurityDecoder.decode(SecurityDecoder.java:175) | at org.jboss.ws.extensions.security.WSSecurityDispatcher.decodeMessage(WSSecurityDispatcher. | java:219) | at org.jboss.ws.extensions.security.jaxws.WSSecurityHandler.handleInboundSecurity(WSSecurity | Handler.java:83) | at org.jboss.ws.extensions.security.jaxws.WSSecurityHandlerServer.handleInbound(WSSecurityHa | ndlerServer.java:41) | at org.jboss.ws.core.jaxws.handler.GenericHandler.handleMessage(GenericHandler.java:55) | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.handleMessage(HandlerChainExecutor.j | ava:295) | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.handleMessage(HandlerChainExecutor.j | ava:140) | at org.jboss.ws.core.jaxws.handler.HandlerDelegateJAXWS.callRequestHandlerChain(HandlerDeleg | ateJAXWS.java:97) | at org.jboss.ws.core.server.ServiceEndpointInvoker.callRequestHandlerChain(ServiceEndpointIn | voker.java:127) | at org.jboss.ws.core.server.ServiceEndpointInvoker.invoke(ServiceEndpointInvoker.java:171) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.processRequest(RequestHandlerImpl.java:466) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.handleRequest(RequestHandlerImpl.java:284) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.doPost(RequestHandlerImpl.java:201) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.handleHttpRequest(RequestHandlerImpl.java:134 | ) | at org.jboss.wsf.stack.jbws.EndpointServlet.service(EndpointServlet.java:84) | at javax.servlet.http.HttpServlet.service(HttpServlet.java:803) | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.j | ava:290) | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) | | at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.j | ava:235) | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) | | at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230) | at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175) | at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.ja | va:179) | at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84) | at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) | at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) | at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java: | 157) | at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) | at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262) | at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844) | at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.ja | va:583) | at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446) | at java.lang.Thread.run(Thread.java:619) | 12:20:07,044 ERROR [HandlerChainExecutor] Exception during handler processing | org.jboss.ws.core.CommonSOAPFaultException: Could not resolve token id: SecurityToken-0ea77ee8-31eb- | 469e-b7b1-67159331a23f | at org.jboss.ws.extensions.security.WSSecurityDispatcher.convertToFault(WSSecurityDispatcher | .java:100) | at org.jboss.ws.extensions.security.WSSecurityDispatcher.decodeMessage(WSSecurityDispatcher. | java:237) | at org.jboss.ws.extensions.security.jaxws.WSSecurityHandler.handleInboundSecurity(WSSecurity | Handler.java:83) | at org.jboss.ws.extensions.security.jaxws.WSSecurityHandlerServer.handleInbound(WSSecurityHa | ndlerServer.java:41) | at org.jboss.ws.core.jaxws.handler.GenericHandler.handleMessage(GenericHandler.java:55) | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.handleMessage(HandlerChainExecutor.j | ava:295) | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.handleMessage(HandlerChainExecutor.j | ava:140) | at org.jboss.ws.core.jaxws.handler.HandlerDelegateJAXWS.callRequestHandlerChain(HandlerDeleg | ateJAXWS.java:97) | at org.jboss.ws.core.server.ServiceEndpointInvoker.callRequestHandlerChain(ServiceEndpointIn | voker.java:127) | at org.jboss.ws.core.server.ServiceEndpointInvoker.invoke(ServiceEndpointInvoker.java:171) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.processRequest(RequestHandlerImpl.java:466) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.handleRequest(RequestHandlerImpl.java:284) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.doPost(RequestHandlerImpl.java:201) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.handleHttpRequest(RequestHandlerImpl.java:134 | ) | at org.jboss.wsf.stack.jbws.EndpointServlet.service(EndpointServlet.java:84) | at javax.servlet.http.HttpServlet.service(HttpServlet.java:803) | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.j | ava:290) | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) | | at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.j | ava:235) | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) | | at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230) | at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175) | at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.ja | va:179) | at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84) | at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) | at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) | at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java: | 157) | at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) | at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262) | at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844) | at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.ja | va:583) | at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446) | at java.lang.Thread.run(Thread.java:619) | 12:20:07,201 ERROR [SOAPFaultHelperJAXWS] SOAP request exception | javax.xml.ws.WebServiceException: org.jboss.ws.core.CommonSOAPFaultException: Could not resolve toke | n id: SecurityToken-0ea77ee8-31eb-469e-b7b1-67159331a23f | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.processHandlerFailure(HandlerChainEx | ecutor.java:276) | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.handleMessage(HandlerChainExecutor.j | ava:155) | at org.jboss.ws.core.jaxws.handler.HandlerDelegateJAXWS.callRequestHandlerChain(HandlerDeleg | ateJAXWS.java:97) | at org.jboss.ws.core.server.ServiceEndpointInvoker.callRequestHandlerChain(ServiceEndpointIn | voker.java:127) | at org.jboss.ws.core.server.ServiceEndpointInvoker.invoke(ServiceEndpointInvoker.java:171) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.processRequest(RequestHandlerImpl.java:466) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.handleRequest(RequestHandlerImpl.java:284) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.doPost(RequestHandlerImpl.java:201) | at org.jboss.wsf.stack.jbws.RequestHandlerImpl.handleHttpRequest(RequestHandlerImpl.java:134 | ) | at org.jboss.wsf.stack.jbws.EndpointServlet.service(EndpointServlet.java:84) | at javax.servlet.http.HttpServlet.service(HttpServlet.java:803) | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.j | ava:290) | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) | | at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.j | ava:235) | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) | | at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230) | at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175) | at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.ja | va:179) | at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84) | at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) | at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) | at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java: | 157) | at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) | at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262) | at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844) | at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.ja | va:583) | at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446) | at java.lang.Thread.run(Thread.java:619) | Caused by: org.jboss.ws.core.CommonSOAPFaultException: Could not resolve token id: SecurityToken-0ea | 77ee8-31eb-469e-b7b1-67159331a23f | at org.jboss.ws.extensions.security.WSSecurityDispatcher.convertToFault(WSSecurityDispatcher | .java:100) | at org.jboss.ws.extensions.security.WSSecurityDispatcher.decodeMessage(WSSecurityDispatcher. | java:237) | at org.jboss.ws.extensions.security.jaxws.WSSecurityHandler.handleInboundSecurity(WSSecurity | Handler.java:83) | at org.jboss.ws.extensions.security.jaxws.WSSecurityHandlerServer.handleInbound(WSSecurityHa | ndlerServer.java:41) | at org.jboss.ws.core.jaxws.handler.GenericHandler.handleMessage(GenericHandler.java:55) | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.handleMessage(HandlerChainExecutor.j | ava:295) | at org.jboss.ws.core.jaxws.handler.HandlerChainExecutor.handleMessage(HandlerChainExecutor.j | ava:140) | ... 27 more | In client side wse3policyCache.config | <policies xmlns="http://schemas.microsoft.com/wse/2005/06/policy"> | <extensions> | <extension name="mutualCertificate11Security" type="Microsoft.Web.Services3.Design.MutualCertificate11Assertion, Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" /> | <extension name="x509" type="Microsoft.Web.Services3.Design.X509TokenProvider, Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" /> | <extension name="requireActionHeader" type="Microsoft.Web.Services3.Design.RequireActionHeaderAssertion, Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" /> | </extensions> | <policy name="ClientPolicyJBoss"> | <mutualCertificate11Security establishSecurityContext="true" renewExpiredSecurityContext="true" requireSignatureConfirmation="false" messageProtectionOrder="SignBeforeEncrypt" requireDerivedKeys="false" ttlInSeconds="300"> | <clientToken> | <x509 storeLocation="LocalMachine" storeName="My" findValue="CN=xwssecurityclient, OU=SUN, O=Internet Widgits Pty Ltd, S=Some-State, C=AU" findType="FindBySubjectDistinguishedName" /> | </clientToken> | <serviceToken> | <x509 storeLocation="LocalMachine" storeName="AddressBook" findValue="CN=xwssecurityserver, OU=SUN, O=Internet Widgits Pty Ltd, S=Some-State, C=AU" findType="FindBySubjectDistinguishedName" /> | </serviceToken> | <protection> | <request signatureOptions="IncludeAddressing, IncludeTimestamp, IncludeSoapBody" encryptBody="false" /> | <response signatureOptions="IncludeNone" encryptBody="false" /> | <fault signatureOptions="IncludeAddressing, IncludeTimestamp, IncludeSoapBody" encryptBody="false" /> | </protection> | </mutualCertificate11Security> | <requireActionHeader /> | </policy> | </policies> | I am using jbossws-3.0.1-native-2.0.4.GA, WSE 3.0 and .Net 2005 I have certificates properly instaled on local machine and current user. Does anyone knows what is going on? Thanks for help View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152119#4152119 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4152119

16 years, 7 months

1
0
0 / 0

[JBossWS] - Re: JBoss Web Service Deployment

by ngewecke

Theres a book out there that is great for this. Its an O'Reilly book, JBoss at Work by Tom Marrs and Scott Davis. Helped me out of some stuff... I think its based on JBoss 4.0.4 thou, that would be your only issue with it. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152110#4152110 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4152110

16 years, 7 months

1
0
0 / 0

[JBossWS] - Serverside issue

by ngewecke

Hey, I am new to working with JBoss(4.0.4GA), and I was wondering if there is an easy way to invoke the create method of an ejb from the server side of a web service. My problem is that I have a client and a server. The server is fed data by another source, and it opens another thread under the create method (@ejb-create-method using xdoclet(1.2.3) to retrieve the data. Then the client connects and gets the data. But the thread isnt invoked until the client connects to the server for the first time. This is an issue because what if the server is fed data before the client connects to it the first time. I have thought about making a server-side client that starts when the client starts but I would have no idea how to get that to run as well without making another ant script that runs the server then automatically runs a one time client. The best solution i could think of is a way that the server could "invoke" the create method on start up, but I have been doing research and not found much. Any advice? Nathan View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152106#4152106 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4152106

16 years, 7 months

1
0
0 / 0

[JBossWS] - Re: WebService behind LB/SSL Proxy

by SunFire

443... man I hate this "you can't edit your posts" policy! ;) View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4151771#4151771 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4151771

16 years, 7 months

1
0
0 / 0

[JBossWS] - Re: WebService behind LB/SSL Proxy

by SunFire

I meant change port 8080 to 433 of course. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4151770#4151770 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4151770

16 years, 7 months

1
0
0 / 0

[JBossWS] - WebService behind LB/SSL Proxy

by SunFire

Hi, I was wondering how I can configure the following scenario: We have a setup where 4 JBoss AS servers run behind a box acting as a LoadBalancer and a SSL Proxy. This means the public WSDL location is https://secure.domain.com/webservices/application?wsdl behind the LB it will then internally go via regular HTTP to the 4 boxes via: http://10.231.12.[1-4]:8080/webservices/application?wsdl The problem is now to setup the soap:address location to show https://secure.domain.com/webservices/application I managed to configure it to show the correct domain http://secure.domain.com:8080/webservices/application but I failed to change the transport from http to https and the port from 8080 to 80. Is there a way to show https and port 80 even when the actual final server works with http and port 8080? Thanks View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4151769#4151769 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4151769

16 years, 7 months

1
0
0 / 0

[JBossWS] - Http Basic Authentication / GET and POST differences?

by boopet

Hello, we are using a JBossWS 2.0.1 client to access a Axis2 Webservice secured with Http Basic Authentication. The client side gets username and password to login this way: BindingProvider.getRequestContext().put(BindingProvider.USERNAME_PROPERTY, "username"); | .. The authentication to the webservice does only work, if GET requests to the WSDL file are excluded from the htaccess protection at the server side. obviosly the login credentials are only sent with POST requests to the webservice methods. Does anyone know, if this is intended to be this way? Is there a way to also authenticate for GET requests with the JBossWS client? thanks norbert View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4151726#4151726 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4151726

16 years, 7 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jbossws-users May 2008