[jboss-user] [JBoss Web Services] - WS-Security on JBoss 4.2.2.GA with jbossws-native-client 3.2.0.GA error
Sidney Zurch
do-not-reply at jboss.com
Thu May 6 14:54:42 EDT 2010
Sidney Zurch [http://community.jboss.org/people/zurchman] replied to the discussion
"WS-Security on JBoss 4.2.2.GA with jbossws-native-client 3.2.0.GA error"
To view the discussion, visit: http://community.jboss.org/message/541676#541676
--------------------------------------------------------------
SoapUI 3.5 can apparently not be used to test encryption with JBossWS 4.2.3/3.1.1.
JBoss WS clients generate a wsu:ID attribute in the <env:Body> element, which SoapUI omits. This is the cause of your fault.
<env:Body xmlns:wsu='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'
wsu:Id='element-1-1272320911598-1522000'>
<xenc:EncryptedData Id='encrypted-2-1272320911598-11779585' Type='http://www.w3.org/2001/04/xmlenc#Content'
xmlns:xenc='http://www.w3.org/2001/04/xmlenc#'>
SoapUI:
<soapenv:Body>
<xenc:EncryptedData Id="EncDataId-5" Type="http://www.w3.org/2001/04/xmlenc#Content">
JBoss also generates wsu:ID attributes in the <wsse:SecurityTokenReference> element, which again, SoapUI omits.
And as for testing WS-security, you might think about breaking up your operations and testing in stages: first test encryption using a single keystore, then test encryption requiring signatures, then multiple keystores, etc.
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/541676#541676]
Start a new discussion in JBoss Web Services at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2044]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20100506/58f5ad32/attachment-0001.html
More information about the jboss-user
mailing list